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PRELIMINARY AMENDMENT 

Commissioner for Patents 
Washington, D.C. 20231 

Dear Honorable Commissioner: 

Please amend the above-referenced application as follows, and consider the 

following remarks: 

IN THE SPECIFICATION 

Please substitute the present specification with the substitute specification 
attached as Exhibit A. 
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IN THE CLAIMS 

Please add new claims 11-14 as follows: 

11. (NEW) A PDA portal which facilitates securing at least a portion of 
content from a source to a PDA, wherein said PDA portal is configured to: 

receive a signal from the PDA indicating content to be at least one of 
refreshed and downloaded; 

isolate imbedded links within the PDA Portal and identify the content 
to be secured; 

request secure content from web sites using a hardware encryption 
device to receive the results of the requested content using a secure protocol; 
and 

transmit the encrypted content to the PDA. 



12. (NEW) The PDA portal of claim 11, wherein said PDA portal is further 
configured to: 

identify the PDA; 

interrogate the source containing the portion of the content to 
determine if secure content is included in the portion of the content; and 

encrypt the content using the hardware encryption device and a user 
pass-phrase. 



13. (NEW) A method for implementing a loyalty program using a PDA portal 
which facilitates securing at least a portion of content from a source to a PDA, the 
method comprising the steps of: 

receiving and storing manufacturer item identifiers; 

receiving and processing a consumer ID; 

receiving and processing purchase data, wherein said purchase data comprises 
at least a retailer item identifier; 
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associating said consumer ID, said purchase data, and a manufacturer item 
identifier; 

performing an analysis dependent upon the step of associating said consumer 
ID, said purchase data, and said manufacturer item identifier; 
synchronizing said PDA to a PDA portal; 

transmitting a signal to said PDA portal, wherein said signal represents content to 
be at least one of refreshed and downloaded to said PDA and said signal includes at 
least one of said consumer ID, said purchase data, and said manufacturer item 
identifier; 

providing identification signals from said PDA to said PDA portal, wherein said 
PDA portal is configured to interrogate sources containing said portion of said content to 
determine if secure content is included in said portion of said content, connect to a 
hardware encryption device which is configured to isolate imbedded links, receive 
encrypted content from said hardware encryption device, and transmit encrypted 
content to said PDA; 

receiving said encrypted content from said PDA portal; 

storing said encrypted content in encrypted form; and 

receiving a pass-phrase from said user to authenticate said user and decrypt 
said content. 

14. (NEW) A system for implementing a loyalty program on a network-wide 
level using a PDA portal which facilitates securing at least a portion of content from a 
source to a PDA, comprising: 

means for associating a consumer ID, purchase data from multiple retailers, and 
a manufacturer item identifier, 

wherein said purchase data comprises a retailer item identifier; and 
wherein said PDA portal is configured to: 

receive a signal from said PDA indicating content to be at least 
one of refreshed and downloaded and said signal includes at least one 
of said consumer ID, said purchase data, and said manufacturer item 
identifier; 
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identify said PDA; 

interrogate source containing said portion of said content to 
determine if secure content is included in said portion of said content; 

connect to an encryption device which is configured to isolate 
imbedded links; 

receive encrypted content from said encryption device; and 

transmit encrypted content to said PDA; and 

means for performing an analysis to calculate rewards points, said analysis being 
dependent upon an association of said consumer ID, said purchase data, and said 
manufacturer item identifier from said PDA. 
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REMARKS 

This amendment is being submitted to include the foregoing amendment prior to 
examination of the above-referenced application. New claims 11-14 have been added, 
so that claims 1-14 (7 independent claims and 14 total claims) remain pending in the 
application. In addition, the specification has been amended to clarify and reorganize 
the subject matter of the present application. 

Based upon the request in the Notice to File Missing Parts, FIG.s 1-7 originally 
incorporated by reference via U.S. Serial No. 09/836,213 and Figures 1-6 also 
referenced in the present application have been re-numbered and consolidated as 
FIG.s 8-11, so that the present application includes FIG.s 1-11. These same substitute 
drawing figures FIG.s 1-11 are submitted in the Response to Notice to File Missing 
Parts concurrently submitted on August 21, 2002, and a copy of the substitute drawing 
figures is also attached herewith for the Examiner's convenience. The substitute 
specification attached hereto reflects this re-numbering of the drawing figures. 

Attached hereto is a marked-up version of the changes made by the current 
amendment. The attached page is captioned "Version With Markings To Show 
Changes Made". A marked-up version of the specification is attached as Exhibit B. 
Support for the amendments is found in the Specification and claims originally filed. No 
new matter is added by this Amendment. Should the Examiner wish to discuss the 
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above in greater detail, then the Examiner is invited to telephone the undersigned at 
the Examiner's convenience. 



Dated this31 S ciav of AciA^Jl^ 2002. 



Respectfully submitted, 




U.S. Reg. No. 45,875 

SNELL & WILMER LLP. 
One Arizona Center 
400 East Van Buren 
Phoenix, Arizona 85004-2202 
Phone: (602)382-6306 
Fax: (602) 382-6070 
E-mail: sshahpar@swlaw.com 
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"Version With Markings To Show Changes Made" 

^225^ Please substitute the present specification with the substitute specification 
attached as Exhibit A. Exhibit B is a rnarked-up version of the specification showing the 
amendments made to the original specification. 



Please add new claims 1 1-14 as follows: 



11. (NEW) A PDA portal which facilitates securing at least a portion of 
content from a source to a PDA, wherein said PDA portal is configured to: 

receive a signal from the PDA indicating content to be at least one of 
refreshed and downloaded; 

isolate imbedded links within the PDA Portal and identify the content 
to be secured; 

request secure content from web sites using a hardware encryption 
device to receive the results of the requested content using a secure protocol; 
and 

transmit the encrypted content to the PDA. 



12. (NEW) The PDA portal of claim 11, wherein said PDA portal is further 
configured to: 

identify the PDA; 

interrogate the source containing the portion of the content to 
determine if secure content is included in the portion of the content; and 

encrypt the content using the hardware encryption device and a user 
pass-phrase. 



13. (NEW) A method for implementing a loyalty program using a PDA portal 
which facilitates securing at least a portion of content from a source to a PDA, the 
method comprising the steps of: 
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receiving and storing manufacturer item identifiers; 
receiving and processing a consumer ID; 

receiving and processing purchase data, wherein said purchase data comprises 
at least a retailer item identifier; 

associating said consumer ID, said purchase data, and a manufacturer item 
identifier; 

performing an analysis dependent upon the step of associating said consumer 
ID, said purchase data, and said manufacturer item identifier; 
synchronizing said PDA to a PDA portal; 

transmitting a signal to said PDA portal, wherein said signal represents content to 
be at least one of refreshed and downloaded to said PDA and said signal includes at 
least one of said consumer ID, said purchase data, and said manufacturer item 
identifier; 

providing identification signals from said PDA to said PDA portal, wherein said 
PDA portal is configured to interrogate sources containing said portion of said content to 
determine if secure content is included in said portion of said content, connect to a 
hardware encryption device which is configured to isolate imbedded links, receive 
f| encrypted content from said hardware encryption device, and transmit encrypted 
fit content to said PDA; 

q receiving said encrypted content from said PDA portal; 

1 ^ storing said encrypted content in encrypted form; and 

receiving a pass-phrase from said user to authenticate said user and decrypt 
said content. 



: 1 



14. (NEW) A system for implementing a loyalty program on a network-wide 
level using a PDA portal which facilitates securing at least a portion of content from a 
source to a PDA, comprising: 

means for associating a consumer ID, purchase data from multiple retailers, and 
a manufacturer item identifier, 

wherein said purchase data comprises a retailer item identifier; and 
wherein said PDA portal is configured to: 
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receive a signal from said PDA indicating content to be at least 
one of refreshed and downloaded and said signal includes at least one 
of said consumer ID, said purchase data, and said manufacturer item 
identifier; 

identify said PDA; 

interrogate source containing said portion of said content to 
determine if secure content is included in said portion of said content; 

connect to an encryption device which is configured to isolate 
imbedded links; 

receive encrypted content from said encryption device; and 

transmit encrypted content to said PDA; and 

means for performing an analysis to calculate rewards points, said analysis being 
dependent upon an association of said consumer ID, said purchase data, and said 
manufacturer item identifier from said PDA. 
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Title: System and Method for Securing Data Through a PDA Portal 

Inventor: Fauziah B. Ariff 
Fred Bishop 
Trey Neemann 
Theodore S. Voltmer 



Cross Reference to Related Applications 



[0001] This application claims priority to, and the benefit of, U.S. Provisional 

Application No. 60/271,457, entitled "System and Method for Securing Data 
through a PDA Portal" filed on February 26, 2001 and U.S. Patent Application 
Serial No. 09/836,213, entitled "System and Method for Networked Loyalty 
Wj Program", filed on April 17, 2001, which itself claims priority to U.S. Provisional 

i| Application Serial No. 60/279,817, entitled "System and Method for Networked 

% Incentive Awards Program" filed March 29, 2001, all of which are hereby 

if incorporated by reference in their entirety. 

L Field of Invention 

01 [0002] The present invention relates generally to a personal digital assistant 

U (PDA) portal, and more specifically, to a PDA portal which facilitates securing 



ru 



content while it is collected, assembled and delivered to the PDA device from the 
source to viewing by the user. 

Background of the Invention 
[0003] Incentive award programs have been developed in a variety of industries 

to promote customer loyalty. Generally, such programs reward customers for 
repeat business with the same merchant or service provider by accumulating 
reward points which can then be redeemed in a plurality of ways, including 
exchanging the reward points for additional goods and services that may be 
selected from an approved list or a redemption catalog for example. The reward 
points are usually calculated using a predetermined formula or ratio that relates a 
customer's purchase volume {i.e., in terms of money value or some other volume 

1 
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parameter) to a certain number of reward points. For example, reward points may 
be issued on a one-for-one basis with each dollar that a customer spends on 
particular goods and services. 
[0004] One well-known example of a customer incentive program is a "frequent 

flyer" program which rewards airlines passengers with "mileage points" based upon 
the distances that the passengers fly with a particular airline. The mileage points 
may then be redeemed for free airfare or free car rentals. Other incentive award 
programs are designed to induce usage of particular financial instruments, such as 
credit cards or debit cards, by accumulating reward points or dollar value points 
based upon the volume of purchases made using the particular financial 
instrument. These types of programs may be designed such that customers of the 
hi financial institution accumulate reward points which can be redeemed for selected 

goods or services or, alternatively, such that customers accumulate points which 
have a dollar value which can be applied toward a credit or debit balance, 
depending on whether the instrument is a credit or debit instrument, for example. 
[0005] These and other similar incentive award programs are described in U.S. 

Patent Nos. 5,774,870 and 6,009,412, issued to Thomas W. Storey and assigned 
to Netcentives, Inc., both of which are hereby incorporated by reference to the 
extent that they describe an automated rewards system. For more information on 
9 loyalty systems, transaction systems, electronic commerce systems, and digital 

wallet systems, see, for example, the Shop AMEX™ system as disclosed in Serial 
No. 60/230,190 filed September 5, 2000; the MR as Currency™ and Loyalty 
Rewards Systems as disclosed in Serial No. 60/197,296 filed on April 14, 2000, 
Serial No. 60/200,492 filed April 28, 2000, and Serial No. 60/201,114 filed May 2, 
2000; a digital wallet system as disclosed in U.S. Serial No. 09/652,899 filed 
August 31, 2000; a stored value card as disclosed in Serial No. 09/241,188 filed on 
February 1, 1999; a system for facilitating transactions using secondary transaction 
numbers as disclosed in Serial No. 09/800,461 filed on March 7, 2001; and also in 
related provisional applications Serial No. 60/187,620 filed March 7, 2000, Serial 
No. 60/200,625 filed April 28, 2000, and Serial No. 60/213,323 filed May 22, 2000, 
all of which are herein incorporated by reference. Other examples of online 
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membership reward systems are disclosed in U.S. Patent No. 5,774,870, issued on 
June 30, 1998, and U.S. Patent No. 6,009,412, issued on December 29, 1999, 
both of which are hereby incorporated by reference. A further example of a loyalty 
and reward program may be found at the AIR MILES® Web site (www.airmiles.ca), 
which describes a loyalty program offered by The Loyalty Group, a privately held 
division of Alliance Data Systems of Dallas, Texas, and which is hereby 
incorporated by reference. Additional information relating to smart card and smart 
card reader payment technology is disclosed in Serial No. 60/232,040, filed on 
September 12, 2000, and U.S. Patent Nos. 5,742,845; 5,898,838 and 5,905,908, 
owned by Datascape; all of which are hereby incorporated by reference. 
Information on point-of-sale systems and the exploitation of point-of-sale data is 
H disclosed in U.S. Patent No. 5,832,457, issued on November 3, 1998 to O'Brien et 

a 

r| al., which is hereby incorporated by reference. 

^[0006] Portions of each of the above-described programs may be used to induce 

% customer loyalty to particular merchants or service providers who directly provide 

IE goods or services to the consumer. In other words, these prior art frequency 

l n awards programs provide a means for retail businesses, financial institutions, and 

r§ others in direct contact with the customers they service to provide incentives to 

J their customers to encourage repeat and/or volume business. However, these 

programs do not sufficiently address the similar needs of businesses that are 
further up in the distribution chain, such as manufacturers, to promote volume 
purchases by customers based upon, for example, brand loyalty independent of 
the retail source for the purchase. Additionally, the prior art programs do not 
provide a means for monitoring, tracking, and/or analyzing consumer and product 
data across distribution channels for a particular manufacturer and/or the variety of 
goods which that manufacturer places into the stream of commerce for ultimate 
sale to consumers by a retailer. 
[0007] Generally, before a product arrives at a retail establishment for sale to a 

consumer, the product travels through a distribution chain which originates with the 
manufacturer. The manufacturer typically sells its products to a wholesaler who in 
turn sells those products to various retailers. Most modern retailers implement 
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some form of computerization or electronic technology in their day-to-day 
operations. This technology typically consists of using point-of-sale (POS) systems 
for automating checkout procedures, assisting sales personnel, and the like. POS 
systems generally include one or more automated check-out terminals which are 
capable of inputting or sensing and interpreting a symbol or other indicia related to 
the product, such as a Universal Product Code (UPC), generally comprising a 
machine-readable bar code coupled with a human-readable UPC number, that is 
printed on a label or tag which is placed on each item of merchandise to be 
purchased. The manufacturer may assign and mark each product that it sells with 
a UPC. Conventionally, once the product reaches the retailer, the retailer further 
identifies each product with a Stock Keeping Unit (SKU) number or code as well as 
M other information for identifying a specific item or style of merchandise. The 

f§ retailer's SKU number may be either an entirely different number used to identify 

^ each product {e.g., by style) or a modified version of the manufacturer's UPC 



% number, derived, perhaps, by adding a SKU number to the UPC number for 

example. 



4. 
S: 



:;^[0008] A POS terminal, a kiosk terminal, or a sales person's hand-held terminal 

fit might be coupled to a store computer system, such as a network server or some 

Hi 

y[ other store platform host, which is able to recognize and process UPC and/or SKU 

information which has been manually keyed-in or sensed and interpreted by a 
device, such as a barcode reader, coupled to the terminal. The computer system 
typically includes a database which stores information relating to the retailer's 
product inventory, such as stocked merchandise, a UPC and/or SKU number for 
each item of merchandise, and various types of merchandise identification 
information, such as price, inventory, style, color, size, etc., which is associated 
with each UPC and/or SKU number. When a customer purchases an item of 
merchandise, store personnel frequently use an automated terminal to read the 
barcode markings which are attached to the item. A computer interprets the UPC 
and/or SKU number comprised by the barcode, accesses the database to 
determine the price for each item, and maintains a running total of the total 
transaction price. 
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[0009] One problem that results from the independent identification schemes of 

the manufacturer and the retailers is that there is no way for the manufacturer to 
track the quantity of any particular product that each retailer sold. For example, 
even if a manufacturer obtains all of the SKU numbers representing items 
purchased from Retailer 1 and Retailer 2 by consumers, the manufacturer has no 
means for determining which SKU number corresponds to the manufacturer's 
UPC, since the UPC's and SKU numbers of the various retailers are not tracked 
and matched. 

[0010] In view of the foregoing, a need exists for an incentive or loyalty program 

which overcomes the shortcomings of the prior art. Thus, there is a need for a 
system and method which provides a universal customer incentive program that 
M networks various levels of the product distribution chain, such as manufacturers, 

rl wholesalers, and retailers, to provide incentives to consumers to purchase 



m 



* products not only from a particular merchant or group of merchants but also from 

-I* 

S| particular manufacturers, regardless of the specific merchant who sells the 

I* 

| manufacturer's products to the consumer. Additionally, a need exists for a system 

; and method for gathering data which associates particular consumer purchasing 

behaviors and specific products or product criteria across a manufacturer's 
distribution channels. 

[001 1] Consumers may utilize computing devices to assist in the purchase and/or 

loyalty process, and in particular, the consumer may utilize a PDA to facilitate the 
purchase and/or loyalty process. A PDA (personal digital assistant) includes any 
mobile hand-held device that provides computing, information storage and/or 
retrieval capabilities for personal or business use, often for keeping schedule 
calendars, note-entering and address book information. PDA products include, for 
example, the Hewlett-Packard's Palmtop and 3Com's PalmPilot (www.palm.com), 
the details of which are hereby incorporated by reference. An increasing number 
of software and hardware applications have been written or developed for PDAs, 
including the combination of PDAs with telephones and paging systems. The 
PDAs were originally used in a disconnected fashion, functioning as a stand-alone 
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personal computer, but the devices can now be connected to the internet for the 
purposes of browsing content. 
[0012] A PDA portal includes a method for collecting specific information of 

interest to a particular user and making it available for use on their device. The 
updating activity is typically executed when the device is connected to a network 
and "synchronized". Since there is a staggering amount of content available on the 
network, users typically identify which content they want refreshed each time. The 
PDA portal offers "channels" to the users that embody specific content available 
from various content providers, such as the Wall Street Journal, the New York 
Times, or MSN. Typically, the content from these channels that is available for 
access is general, public information. In other words, very little content that is 
H specific to an individual is available for access. Although the general information 

M has value, it is minimal when compared to the opportunity for placing personal 

B| information on the user's PDA. Examples of personal content that may be desired 

S S| is their monthly account statement, a travel itinerary, or an investment portfolio and 

5 f its statement. This is information that could be of use to customers in the 

:^ disconnected manner that is offered by PDAs. Moreover, integrating public and 

tit private data into one source may be valuable, such as, for example, the system 

disclosed in U.S. Serial No. 09/893,391 entitled SYSTEM AND METHOD FOR 
INTEGRATING PUBLIC AND PRIVATE DATA, filed on June 28, 2001 by inventors 
Mitchell, et al., the entire contents of which is hereby incorporated by reference. 

[0013] After a user has selected the content channels he wants to be placed onto 

his device, each time the user synchs his device, this content will be collected from 
the corresponding locations, assembled and placed onto the device. Since not all 
content will fit on a single page, the portal will typically interrogate the page looking 
for links to additional content pages. If present, additional content requests are 
made of the content source. Once collected, the content is assembled and stored 
on the connected PDA device. 
[0014] Currently, the PDA portals do not offer secured personal content. If they 

do offer personal data, it is either not confidential (like addresses and directions) or 
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available in a clear and unsecured state. A problem with using this method for 
secure content is that it is visible throughout the process. If the content includes 
account numbers, they may be exposed, and could be stolen and improperly used. 
The fundamental problem is often distributing personal content that must be 
secured into an unsecure environment. PDAs are inherently not secure. Being 
small and self-contained (to enable disconnected operation), they are easily lost or 
stolen, and downloading confidential content (such as account numbers or their 
balances) on the PDA that can be easily accessed by anyone other than the user is 
unacceptable by many. 

[0015] In a connected environment, the conventional wisdom is to use end to end 

security using the standard protocols (SSL) to secure the content between its 
hk source and its use. When its use is complete, the content is usually gone, as it is 

not stored on the PC. A disconnected environment is different in that the content is 
usually stored on the device for use when the device has been removed from the 
a network. The definition of end to end security must therefore change to 

f accommodate this difference, such that the content be secured once it leaves its 

4 

source until the user has been properly authenticated on the device. 
m[0016] Portals usually serve as a middle layer between the user and the content 

pf source. Traditional security measures work between the client and the source, but 

Q when a middle layer is added to the environment, there is a period when the 

rji 

content is exposed, when it is decrypted on the portal from the source and before it 
is encrypted for delivery to the users client. There is known security hardware that 
can be used for internet sites to insure the content is always secured. One of the 
difficulties of using this technology is that the portal still needs to be aware of the 
links that are present in the content to collect all the content of the channel. 
[0017] Since most of the content currently being placed onto these devices is 

general, the process being used to collect the content from the different channels 
and prepare it for the device does not need to be secure. But, since the content 
must be interrogated to determine any links that must be traversed to collect all the 
applicable data, the content is kept in an unsecured state at the PDA portal or the 
PDA. Once the content has been prepared, it is moved to and placed onto the 
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PDA as it is, unsecured. The process must therefore be amended to insure the 
content is secure in how it is collected, assembled and delivered to the PDA 
device. 



3~ 



Summary of the Invention 
[0018] Consumers may utilize computing devices to assist in the purchase and/or 

loyalty process, and in particular, the consumer may utilize a PDA to facilitate the 
purchase and/or loyalty process. During the purchase and/or loyalty process, the 
consumer may need to insure that any content downloaded or used in association 
with the PDA is secure in how it is collected, assembled and delivered to the PDA 
device. This system and method secures the data from its source to when it is 
M actually viewed/used by the authorized user. The PDA may have direct access to 

F§ an Internet web site portal that offers secure personal content from a content 

ii provider, such as, for example, an on-line banking or financial institution. Using the 

it web site portal, the content provider may offer personal or confidential data, such 

as financial information, to PDA users in a secure (e.g., encrypted) environment. 
The exemplary system and method may establish a PDA portal link to the web site 
for collecting specified information for a user and transmitting the information to the 
remote device. To receive the information, the PDA contacts the portal and 
establishes a connection, authenticates itself to the network and allows the user to 
complete secured transactions or transmissions over the network. 
[0019] More particularly, the method for securing at least a portion of content from 

a source to a PDA includes, for example, synchronizing a PDA to a PDA portal; 
transmitting a signal to the PDA portal, wherein the signal represents content to be 
at least one of refreshed and downloaded to the PDA; providing identification 
signals from the PDA to the PDA portal, wherein the PDA portal is configured to 
interrogate sources containing a portion of said content to determine if secure 
content is included in a portion of the content, connect to a hardware encryption 
device which is configured to isolate imbedded links, receive encrypted content 
from the hardware encryption device, and transmit encrypted content to the PDA 
via the PDA portal; receiving the encrypted content from the PDA portal; storing the 
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encrypted content in encrypted form; and, receiving a pass-phrase from the user to 
authenticate the user and decrypt the content. 

Brief Description of the Drawings 
[0020] Additional aspects of the present invention will become evident upon 

reviewing the non-limiting embodiments described in the specification and the 
claims, in conjunction with the accompanying figures, wherein like numerals 
designate like elements, and wherein: 
[0021] FIG. 1 is a diagram illustrating an exemplary embodiment of an incentive 

or loyalty system in accordance with various aspects of the present invention; 
[0022] FIG. 2 is a diagram illustrating an exemplary embodiment of an incentive 

4 or loyalty system in accordance with various aspects of the present invention; 

1[0023] FIG. 3 is a diagram illustrating an exemplary embodiment of an incentive 

or loyalty system in accordance with various aspects of the present invention; 
[0024] FIG. 4 is a diagram illustrating an exemplary embodiment of a central 

rewards mechanism in accordance with various aspects of the present invention; 

* [0025] FIG. 5 is a diagram illustrating an exemplary embodiment of a rewards 

o 

jj server in accordance with various aspects of the present invention; 

[0026] FIG. 6 is a flowchart illustrating an exemplary process for capturing and 

processing POS SKU data in accordance with various aspects of the present 
invention; 

[0027] FIG. 7 is a flowchart illustrating an exemplary process for associating 

information in accordance with various aspects of the present invention; 
[0028] FIG. 8 is a schematic block diagram illustrating an exemplary PDA portal 

registration process and system in accordance with various aspects of the present 
invention; 

[0029] FIG. 9 is a schematic block diagram illustrating an exemplary process and 

system for establishing a session for secure content using a PDA portal in 
accordance with various aspects of the present invention; 
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[0030] FIG. 10 is a schematic block diagram illustrating an exemplary process 

and system for registration and establishing a session for secure content using a 
PDA portal in accordance with various aspects of the present invention; and 

[0031] FIG. 11 is a schematic block diagram illustrating systems and processes 

for exemplary PDA updates using a PDA portal in accordance with various aspects 
of the present invention. 



Detailed Description 

[0032] The following disclosure presents and describes various exemplary 

embodiments in sufficient detail to enable those skilled in the art to practice the 
invention, and it should be understood that other embodiments may be realized 
H without departing from the spirit and scope of the invention. Thus, the following 

5 detailed description is presented for purposes of illustration only, and not of 

:| limitation, and the scope of the invention is defined solely by the appended claims. 

l[0033] The present invention may be described herein in terms of functional block 

| components and various processing steps. It should be appreciated that such 

functional blocks may be realized by any number of hardware and/or software 

3 

components configured to perform the specified functions. For example, the 
present invention may employ various integrated circuit components, e.g., memory 



fU 



0 elements, processing elements, logic elements, look-up tables, and the like, which 

may carry out a variety of functions under the control of one or more 
microprocessors or other control devices. Similarly, the software elements of the 
present invention may be implemented with any programming or scripting language 
such as C, C++, Java, COBOL, assembler, PERL, or the like, with the various 
algorithms being implemented with any combination of data structures, objects, 
processes, routines, or other programming elements. Further, it should be noted 
that the present invention may employ any number of conventional techniques for 
data transmission, signaling, data processing, network control, and the like. For a 
basic introduction to cryptography, please review a text written by Bruce Schneider 
which is entitled "Applied Cryptography: Protocols, Algorithms, And Source Code 
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In C", published by John Wiley & Sons (second edition, 1996), which is hereby 
incorporated by reference. 
[0034] It should be appreciated that the particular implementations shown and 

described herein are illustrative of the invention and its best mode and are not 
intended to otherwise limit the scope of the present invention in any way. 
Furthermore, the connecting lines shown in the various figures contained herein 
are intended to represent exemplary functional relationships and/or physical 
couplings between the various elements. It should be noted that many alternative 
or additional functional relationships or physical connections may be present in a 
practical incentive system implemented in accordance with the invention. 
[0035] Communication between participants in the system of the present 

invention is accomplished through any suitable communication means, such as, for 
example, a telephone network, public switch telephone network, intranet, Internet, 
l f extranet, WAN, LAN, point of interaction device (e.g., point of sale device, personal 

Sj digital assistant, cellular phone, kiosk terminal, automated teller machine (ATM), 

Ufa 

1| etc.), online communications, offline communications, wireless communications, 

satellite communications, and/or the like. One skilled in the art will also appreciate 

that, for security reasons, any databases, systems, or components of the present 

in 

invention may consist of any combination of databases or components at a single 
location or at multiple locations, wherein each database or system includes any of 
various suitable security features, such as firewalls, access codes, encryption, de- 
encryption, compression, decompression, and/or the like. 
[0036] It further will be appreciated that users may interact with the system via 

any input device such as a keyboard, mouse, kiosk, personal digital assistant, 
handheld computer (e.g., Palm Pilot®), cellular phone, and/or the like. Similarly, 
the invention could be used in conjunction with any type of personal computer, 
network computer, workstation, minicomputer, mainframe, or the like, running any 
operating system, such as any version of Windows, Windows NT, Windows 2000, 
Windows 98, Windows 95, MacOS, OS/2, BeOS, Linux, UNIX, or the like. 
Moreover, although the invention may be described herein as being implemented 
with TCP/IP communications protocols, it will be readily understood that the 
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invention could also be implemented using IPX, Appletalk, IP-6, NetBIOS, OSI, or 
any number of existing or future protocols. Moreover, the system contemplates the 
use, sale, or distribution of any goods, services, or information over any network 
having similar functionality described herein. 
[0037] Each participant or user of the system of the present invention, including 

purchasers, retailers, manufacturers, and a third-party providers, may be equipped 
with a suitable computing system to facilitate online communications and 
transactions with any other participant. For example, some or all participants may 
have access to a computing unit in the form of a personal computer, although other 
types of computing units may be used, including laptops, notebooks, handheld 
computers, set-top boxes, kiosk terminals, and the like. Additionally, other 

H participants may have computing systems which may be implemented in the form 

rn 

rS of a computer-server, a PC server, a networked set of computers, or any other 

i£ 

suitable implementations which are known in the art or may hereafter be devised. 

The computing systems may be connected with each other via a data 
communications network as described more fully above. For example, the network 
may be a public network, which is assumed to be insecure and open to 
U eavesdroppers. In one embodiment, the network is embodied as the Internet. In 

this context, the computers may or may not be connected to the Internet at all 
times. For instance, the consumer's computer may employ a modem to 
occasionally connect to the Internet, whereas the retailer computing system, the 
manufacturer computing system, and the central rewards mechanism might 
maintain a permanent connection to the Internet. It is noted that the network may 
be implemented as other types of networks, such as an interactive television (ITV) 
network. 

[0039] The retailer's computer system may also be interconnected to a third-party 

provider via a second network, referred to as a payment network. The payment 
network represents existing proprietary networks that presently accommodate 
transactions for credit cards, debit cards, and other types of financial instruments or 
banking cards. The payment network is a closed network that is assumed to be 
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secure from eavesdroppers. Examples of the payment network include the 
American Express®, VisaNet®, and the Veriphone® networks. 
[0040] As will be appreciated by one of ordinary skill in the art, the present 

invention may be embodied as a method, a data processing system, a device for 
data processing, and/or a computer program product. Accordingly, aspects of the 
present invention may take the form of an entirely software embodiment, an 
entirely hardware embodiment, or an embodiment combining aspects of both 
software and hardware. Furthermore, the present invention may take the form of a 
computer program product on a computer-readable storage medium having 
computer-readable program code means embodied in the storage medium. Any 
suitable computer-readable storage medium may be utilized, including hard disks, 
H CD-ROM, optical storage devices, magnetic storage devices, and/or the like. 

SJ0041] The present invention is described below with reference to block diagrams 

0} and flowchart illustrations of methods, apparatus (e.g., systems), and computer 

S| program products according to various aspects of the invention. It will be 

f understood that each functional block of the block diagrams and the flowchart 

illustrations, and combinations of functional blocks in the block diagrams and 
I flowchart illustrations, respectively, can be implemented by computer program 

* instructions. These computer program instructions may be loaded onto a general 

purpose computer, special purpose computer, or other programmable data 
processing apparatus to produce a machine, such that the instructions which 
execute on the computer or other programmable data processing apparatus create 
means for implementing the functions specified in the flowchart block or blocks. 
[0042] These computer program instructions may also be stored in a computer- 

readable memory that can direct a computer or other programmable data 
processing apparatus to function in a particular manner, such that the instructions 
stored in the computer-readable memory produce an article of manufacture 
including instruction means which implement the function specified in the flowchart 
block or blocks. The computer program instructions may also be loaded onto a 
computer or other programmable data processing apparatus to cause a series of 
operational steps to be performed on the computer or other programmable 
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apparatus to produce a computer-implemented process such that the instructions 
which execute on the computer or other programmable apparatus provide steps for 
implementing the functions specified in the flowchart block or blocks. 
[0043] Accordingly, functional blocks of the block diagrams and flowchart 

illustrations support combinations of means for performing the specified functions, 
combinations of steps for performing the specified functions, and program 
instruction means for performing the specified functions. It will also be understood 
that each functional block of the block diagrams and flowchart illustrations, and 
combinations of functional blocks in the block diagrams and flowchart illustrations, 
can be implemented by either special purpose, hardware-based computer systems 
which perform the specified functions or steps, or suitable combinations of special 
t* purpose hardware and computer instructions. 

l|[0044] As used herein, the terms "user" and "participant" shall interchangeably 

5 refer to any person, entity, charitable organization, machine, hardware, software, or 

"5 business who accesses and uses the system of the invention, including 

t consumers, retailers, manufacturers, and third-party providers. Participants in the 

l n system may interact with one another either online or off-line. As used herein, the 

3 term "online" refers to interactive communications that takes place between 

!| participants who are remotely located from one another, including communication 

through any of the networks or communications means described above or the like. 
[0045] The term "manufacturer" shall include any person, entity, charitable 

organization, machine, software, hardware, and/or the like that manufactures, 
distributes, or originates a product or service which may ultimately be offered to a 
consumer directly or indirectly through a retailer. The term "manufacturer" may 
also include any party that generates and/or provides manufacturer item identifiers. 
The term "retailer" shall include any person, entity, charitable organization, 
machine, software, hardware, and/or the like that that offers a product or service to 
a consumer. As used herein, the term "retailer" is used interchangeably with the 
term "merchant". Moreover, in this context, a retailer or merchant may offer or sell, 
either online or offline, products and/or services made or supplied by at least one 
manufacturer. As used herein, the phrases "network level" and "network-wide 
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level" shall refer to a system that includes more than one retailer and at least one 
manufacturer. 

[0046] As used herein, the terms "purchaser", "customer", "consumer", and "end- 

user" may be used interchangeably with each other, and each shall mean any 
person, entity, charitable organization, or business which uses a consumer ID to 
participate in the present system. A "consumer ID", as used herein, includes any 
device, code, or other identifier suitably configured to allow the consumer to 
interact or communicate with the system, such as, for example, a rewards card, 
charge card, credit card, debit card, prepaid card, telephone card, smart card, 
magnetic stripe card, bar code card, authorization/access code, personal 
identification number (PIN), Internet code, other identification code, and/or the like. 
Additionally, a "consumer ID" may comprise any form of electronic, magnetic, 
and/or optical device capable of transmitting or downloading data from itself to a 
second device which is capable of interacting and communicating with such forms 
of consumer ID. 

I [0047] A consumer may register to participate in the present system by any 

methods known and practiced in the art. For example, a consumer may be 
enrolled automatically (e.g. if the consumer holds an existing account with the 
system administrator), over the phone, at the point of sale through a paper 
application or verbal interview, through the mail, or through instant enrollment 
online. Consumer enrollment data may comprise any of the following: name; 
address; date of birth; social security number; email address; gender; the names of 
any household members; a credit card number for charging any fees that may be 
associated with participation in the system; survey data; interests; educational 
level; and/or any preferred brand names. Upon enrollment, the consumer receives 
a consumer ID. The consumer ID may be associated with a household account 
which specifies the consumer as a primary member and permits the identification 
of supplementary members associated with the consumer's household who may 
also earn reward points for the consumer. 
[0048] A "consumer profile", as used herein, shall refer to any data used to 

characterize a consumer and/or the behavior of a consumer. In the context of a 
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commercial transaction, "a consumer profile" shall be understood to include, for 
example, the time and date of a particular purchase, the frequency of purchases, 
the volume/quantity of purchases, the transaction size (price), and/or the like. 
Additionally, in other transactional contexts, the term "consumer profile" shall also 
be understood to include non-purchase behaviors of a consumer, such as 
consumer enrollment data, visiting a Web site, referrals of prospective participants 
in the system, completion of a survey or other information gathering instrument, 
and/or the like. For instance, a participating online consumer may earn rewards 
points automatically through a triggering event, such as visiting a Web site, 
completing an online survey, or clicking on a banner advertisement for example. 
Offline, a participating consumer may earn rewards points by completing a task or 
showing their consumer ID to the cashier and triggering the cashier to provide a 
"behavior" ID which may be input (e.g., by scanning a bar code on a paper survey 
for example) into the POS terminal. Further, any aspects of the consumer profile 
may be used in the context of data analysis. 
[0049] A "third-party provider" may comprise any additional provider of goods 

and/or services to a consumer. Specifically, a "third-party provider" includes any 
party other than the particular manufacturer and retailer who is involved in a 
[5 transaction with a consumer. A third-party provider may include, for example, a 

financial institution, such as a bank or an issuer of a financial instrument (such as a 
credit card or a debit card). A third-party provider may also include a provider of 
goods and services which are offered as awards to consumers in exchange for a 
requisite number of reward points. 
[0050] Though the invention may generically be described with reference to a 

series of transactions which transfer a good or service from an originating party to 
an intermediary party and a subsequent transaction which transfers the good or 
service from the intermediary party to an end-user of that good or service, for 
convenience and purposes of brevity and consistency, the present disclosure 
generally refers to the originating party as a manufacturer, the intermediary party 
as a retailer, the end-user as a consumer, and a good or service as a product or 
item. However, it will be recognized by those of ordinary skill in the art that the 
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retailer need not provide a product or item to a consumer in exchange for monetary 
currency. While this often may be the case, the present disclosure is not so limited 
and includes transactions which may be gratuitous in nature, whereby the retailer 
transfers a product or item to a consumer without the consumer providing any 
currency or other value in exchange. It is further noted that additional participants, 
referred to as third-party providers, may be involved in some phases of the 
transaction, though these participants are not shown. Exemplary third-party 
providers may include financial institutions, such as banks, credit card companies, 
card sponsoring companies, or issuers of credit who may be under contract with 
financial institutions. It will be appreciated that any number of consumers, retailers, 
manufacturers, third-party providers, and the like may participate in the system of 
the present invention. 

: 2 [0051] As used herein, the term "UPC" and the phrase "manufacturer item 

3 identifier" shall refer to any symbol or indicia which provides information and, in an 

| exemplary embodiment, shall refer to any number, code, or identifier assigned by a 

manufacturer and associated with an item, including any type of goods and/or 
services, ultimately offered to a consumer or other end-user. Colloquially, a UPC is 
sometimes referred to as a SKU number. However, as used herein, the term 
I "SKU" and the phrase "retailer item identifier" shall refer to any symbol or indicia 

which provides additional information and, in an exemplary embodiment, shall refer 
to any number, code, or identifier assigned by a retailer and associated with an 
item, including any type of goods and/or sen/ices, offered to a consumer or other 
end-user. 

[0052] "Purchase data", as used herein, comprises data relating to the offer of 

any item to a consumer or other end-user. Purchase data may include any of the 
following: an item purchased, an item price, a number of items purchased, a total 
transaction price, a payment vehicle, a date, a store identifier, an employee 
identifier, a retailer item identifier, a loyalty identifier, and/or the like. 
[0053] "Retailer ID", as used herein, comprises any symbol, indicia, code, 

number, or other identifier that may be associated with a retailer of any type of 
goods and/or services offered to a consumer or other end-user. A retailer ID may 
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also include or be associated with a "store ID", which designates the location of a 
partifcular store. A "manufacturer ID" comprises any symbol, indicia, code, number, 
or other identifier that may be associated with a manufacturer of any type of goods 
and/or services ultimately offered to a consumer or other end-user. 

[0054] An "award" or "reward" may comprise any quantity of products, services, 

coupons, gift certificates, rebates, reward points, bonus points, credits or debits to 
a financial instrument, any combination of these, and/or the like. 

[0055] "Data analysis", as used herein, shall be understood to comprise 

quantitative and qualitative research, statistical modeling, regression analyses, 
market segmentation analyses, econometrics, and/or the like. Such analyses may 
be used to predict consumer behaviors and/or correlate consumer profiles, retailer 
« data, manufacturer data, and/or product or service data. 

^ [0056] The system of the present invention associates or maps manufacturer 

W UPC data and retailer SKU data on a network level to reward consumers and/or to 

«S| analyze the data for a variety of business purposes, such as market segmentation 

: fj analyses and/or analyses relating to consumer spending behaviors or patterns for 

example. Rather than simply capturing transactions at a Record of Charge (ROC) 
J level, that is, recording consumer purchases in a general fashion by designating 

purchase categories (such as "clothing", "electronics", or "hardware" for example), 
•3 the system identifies the particular item purchased (such as "jeans", "stereo", or 

"hammer" for example) as well as its corresponding manufacturer. By matching or 
associating the retailer SKU and the manufacturer's UPC, the system permits the 
standardization of goods and/or services codes at the network level. This 
standardization not only permits a record of both the specific item purchased and 
its manufacturer, regardless of the particular retailer involved in the transaction, but 
it permits the mapping of multiple consumers, multiple goods and/or services, 
multiple retailers, and/or multiple manufacturers to advantageously cross-market 
goods and services to consumers. 
[0057] In accordance with one aspect of the invention, the association of UPC 

and SKU data by the system facilitates implementation of an incentive or loyalty 
program by providing a universal rewards currency which may be "spent" by 
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participants who have earned rewards and accepted by the other participants in the 
multi-tiered network created by the system. The network may comprise any 
number of participants, including consumers, retailers (and any of their 
employees), manufacturers, third-party providers, and the like. Each of these 
categories of participants may be considered a tier in the network, and each 
participant within the various tiers may design and implement an independent 
rewards scheme within the context of the universal environment provided by the 
system. For example, Manufacturer 1 may produce and assign a UPC to Item X. 
Item X may subsequently be offered for sale by both Retailer 1 and Retailer 2. 
Retailer 1 and Retailer 2 may then each assign an independent SKU number to 
Item X to facilitate their own tracking, inventory, and pricing schemes. A consumer 
may then purchase Item X from both Retailer 1 and Retailer 2. 
[0058] Since the system is capable of processing, associating, and quantifying a 

variety of data, including consumer data, employee data, retailer data, 
manufacturer data, SKU number data corresponding to Item X, and UPC data 
assigned by Manufacturer 1, for example, this data can then be used by the 
manufacturer, the retailer, the system administrator, and/or a third-party provider to 
provide rewards to consumers, employees, retailers, etc. For example, a 

manufacturer may provide frequency-based incentives, such as every 10 th 
purchase of a particular item will be discounted by 50% for example, independent 
of and/or in addition to any incentives offered by the specific retailer involved in the 
transaction. Additionally, the manufacturer may provide sales incentives to the 
employees of retailers independent of and/or in addition to any employee incentive 
programs that the retailers may choose to implement. 
[0059] Since rewards, which may be in the form of rewards points, may be earned 

across the various tiers in the network, rewards may also be used or spent across 
the various tiers in the network. Thus, any rewards points that an employee, for 
example, may earn by promoting a particular manufacturer's line of products, may 
be "spent" by that employee on goods or services provided by any participant in the 
network, not merely at the retailer who employs that employee. Likewise, any 
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rewards points earned by a consumer may be spent on goods or services offered 
by any participant in the network. 
[0060] In accordance with another aspect of the invention, the association of UPC 

and SKU data by the system facilitates data analysis on a network level based 
upon several factors, including any of the following: consumer ID, consumer 
profile, retailer ID, SKU number, UPC, manufacturer ID, and/or the like. The 
system may compile any of the above data across multiple participants for the 
purpose of data analysis, such as analyses which may be employed in strategic 
planning and marketing for example. The system of the invention may be used to 
compile, analyze, and report data in a manner which would inform any or all 
network participants that, for example, a specific consumer (1) has made multiple 
y. purchases of particular manufacturers 1 products; (2) has spent Q dollars over a 

*| certain time period (3) at specific multiple retailers; and (4) of the purchases made, 

i$. R dollars went towards the purchase of Product 1, S dollars went towards the 

if- 

=|j purchase of Product 2, and T dollars went towards the purchase of Service 1. 

I Moreover, the system may be used to compile, analyze, and report data that 

enable a retailer, a manufacturer, and/or a third-party provider to create a variety of 
•| targeted marketing promotions, such as, for example, (1) marketing Product 1 

U offered by Manufacturer 1 to consumers who purchase Product 2 offered by 

Manufacturer 2; (2) marketing Product 1 offered by Manufacturer 1 and sold by 
Retailer X to consumers who purchase Product 2 offered by Manufacturer 2 at 
Retailer Y; (3) marketing Product 1 offered by Manufacturer 1 and sold by Retailer 
X to consumers who purchase Product 2 offered by Manufacturer 2 at Retailer Y 
five times a year. It will be appreciated that these are but a few of the many 
possible applications for data gathered and generated by the system of the present 
invention. 

[0061] In accordance with a further aspect of the invention, the system 

administrator may allocate rewards points to participants in the system. In one 
embodiment, participating retailers and/or manufacturers may purchase points from 
the system administrator and the points are then allocated to an account 
associated with the retailer and/or manufacturer. In an alternate embodiment, the 
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system administrator may give or donate points to participating retailers and/or 
manufacturers. The system administrator maintains an account with each of the 
participating retailers and manufacturers and tracks available points balances 
and/or balances owing on a rolling basis. The points purchased by the retailers 
and/or manufacturers may then be earned by and issued to consumers in a 
manner that is predetermined by the retailer and/or manufacturer involved in the 
transaction with the consumer. For example, Retailer 1 may purchase 10,000 
points from the system administrator and then offer consumers 1 point for every 
$10 dollars spent in Retailer 1's store or, perhaps, some number of points for every 
fifth transaction in the store. Moreover, Manufacturer 1 , who produces the product 
offered by Retailer 1, may also purchase points from the system administrator. 
Thus, when a consumer purchases Manufacturer 1's product at Retailer 1, 
igj Manufacturer 1 may issue some number of points to the consumer. The issuance 

IS of points, either by retailers or manufacturers, may be based upon any selected 

7j criteria, including a points-for-dollars ratio, a defined quantity of points per item or 

| per transaction, some combination of these, and/or the like. 

[0062] The system administrator maintains an account for each participating 

J£ consumer and apprises the consumer of the points totals and account activity. The 



H consumer may review the total number of points in the account either online or off- 

ij line, such as through a periodic statement sent by the system administrator or 

^ through the use of a communications network, such as the Internet, for example. 

Points in the consumer's account are accumulated across the multiple retailers 
and/or manufacturers participating in the system. Thus, points earned by a 
consumer based upon transactions with different retailers and/or manufacturers are 
combined, resulting in a rapid accrual of points. The system administrator offers a 
catalog of products and services, which may be either online or off-line, from which 
consumers may select rewards in exchange for accrued points. In this manner, 
consumers advantageously earn points based upon their everyday purchases of 
products and services, these points are accrued across retailers and/or 
manufacturers, and points redemption takes place through a single, universal 
catalog of rewards. 
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[0063] In accordance with the present invention, FIG. 1 is a diagram illustrating an 

exemplary embodiment of an incentive or loyalty system 100. System 100 
comprises a central rewards mechanism 102; a plurality of retailer/merchant 
systems 104; and at least one manufacturer 106. One skilled in the art will 
appreciate that system 100 may comprise any number of retailer systems 104 and 
any number of manufacturers 1 06. 
[0064] The central rewards mechanism 102 manages the incentive or loyalty 

program of the system 100. In an exemplary embodiment, central rewards 
mechanism 102 receives, processes, and stores manufacturer data, such as 
information regarding products and/or services and UPC data, transmitted by 
manufacturers 106 who have enrolled in the system 100. Manufacturers 106 may 
transmit data to central rewards mechanism 102 in any form and by any means 
known in the art, including any of the communications means described above. 
The manufacturer data is stored by the central rewards mechanism 102 in 
5 database 103. Database 103 may be any type of database, such as relational, 

hierarchical, object-oriented, and/or the like. Common database products that may 
be used to implement database 103 include DB2 by IBM (White Plains, NY), any of 
the database products available from Oracle Corporation (Redwood Shores, CA), 



3ft 



Hi Microsoft Access by Microsoft Corporation (Redmond, Washington), or any other 

database product. Database 103 may be organized in any suitable manner, 



' Vi including as data tables or lookup tables. 

[0065] The central rewards mechanism 102 may receive and process consumer 

ID information and purchase data from any of the retailer systems 104. The central 
rewards mechanism 102 may also associate a particular consumer ID with the 
purchase data and a corresponding manufacturer item identifier. In one 
embodiment, the central rewards mechanism 102 performs an analysis involving 
any of the following: a consumer ID, purchase data, a points ratio, a consumer 
profile, a retailer ID, and a manufacturer ID. The analysis may be dependent upon 
an the association of the consumer IDs, the purchase data, and the manufacturer 
item identifier. The analysis may further comprise, for example, a calculation of 
rewards points and/or other analyses for purposes of market segmentation, 
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determining consumer spending behavior, correlating spending behavior and 
consumer demographics, and/or the like, as described in greater detail above. 
[0066] In one exemplary embodiment, the central rewards mechanism 102 stores 

and informs a consumer of the rewards points that have been earned by a 
particular transaction as well as accumulated over time. The number of rewards 
points calculated and awarded by the central rewards mechanism 102 for a 
particular purchase may depend upon a predetermined rewards ratio. The rewards 
ratio may be determined by the retailer, the system administrator, the manufacturer 
of the purchased item, and/or any other suitable third-party. For example, if a 
participating consumer buys a product from a retailer for $100 and if the retailer 
rewards ratio is one reward point for each dollar of the purchase price {i.e., one-for- 
one), once the consumer's consumer ID is identified by the system, the consumer 
is credited with a suitable number of rewards points from the retailer, which, in this 
case, would be 100 points. However, if the manufacturer also chooses to issue 
rewards points for the item purchased, the manufacturer may select a points ratio 
f that is different from the retailer's selected ratio. In the illustrated example, if the 

manufacturer's selected points ratio is two-for-one, then the consumer will be 
awarded an additional 200 points from the manufacturer for this single $100 
purchase. In this manner, the system of the invention may provide "earn 
accelerators" through which consumers may accumulate rewards points at 
comparatively rapid rate. In other words, a single purchase may generate rewards 
points for a consumer from any or all of a retailer, a manufacturer, and/or a third- 
party provider, and those rewards points may be used as rewards currency by the 
consumer throughout the network established by the system of the invention. 
[0067] In an exemplary embodiment, retailer system 104 comprises a retailer 

terminal 108 and a retailer processor 110 in communication with database 111. 
Retailer terminal 108 comprises any device capable of identifying a consumer ID. 
Exemplary devices for identifying a consumer ID may include a conventional card 
reader which recognizes a magnetic stripe or bar code associated with a consumer 
ID, a biometric device, a smart card reader which recognizes information stored on 
a microchip integrated with a consumer ID, and any device capable of receiving or 
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uploading consumer ID data transmitted electronically, magnetically, optically, 
and/or the like. In one embodiment, retailer terminal 108 and retailer processor 
1 10 are co-located at a retail store. In another embodiment, retail terminal 108 and 
retailer processor 1 10 are remote from each other. 
[0068] In an exemplary embodiment, as illustrated in FIG. 2, retailer terminal 108 

comprises a retailer POS terminal 112, such as a cash register for example. When 
a consumer ID is used at the time an item is purchased, purchase data, including a 
SKU number, is input, sensed, or otherwise recognized by terminal 108, and then 
the purchase data is processed and stored by retailer processor 110. Retailer 
processor 110 comprises or is in communication with a suitable database 111 or 
other storage device for maintaining and storing purchase data and any other 
U suitable retailer information. Database 1 1 1 may be any type of database, such as 

jj any of the database products described above for example. Database 1 1 1 may be 

yf 

QB organized in any suitable manner, including as data tables or lookup tables. 

J* 

3j Purchase data that is stored in database 1 1 1 is available to the retailer's local back 

f office system (not shown) for inventory, accounting, tax, data analysis, and other 

4 

purposes. The captured purchase data may include the item purchased, the item's 
unit price, the number of items purchased, the date, the store location, an 
employee ID, and any other information related to the purchase. In an exemplary 
embodiment, retailer processor 110 may also receive, process, and store 
manufacturer data, such as information regarding products and/or services and 
UPC data, from manufacturers 106 who have enrolled in the system 100. The 
manufacturer data may be stored in any suitable form, including data tables or 
lookup tables. 

[0069] In accordance with the exemplary embodiments illustrated in FIG. 3, 

purchase data may also be transmitted to and stored and processed by a retailer 
regional processor 114 (or, alternatively, a retailer national database (not shown)) 
in communication with database 115 for the purpose of further back office and 
cumulative data analysis. Database 115 may be any type of database, such as 
any of the database products described in greater detail above for example. 
Database 115 may be organized in any suitable manner, including as data tables 
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or lookup tables. In an exemplary embodiment, retailer processor 110 optionally 
may be integrated with retailer regional processor 114 (illustrated by the phantom 
lines encompassing Retailer Processor 1 and retailer regional processor 114 within 
the system of Retailer/Merchant #2), thereby forming a single device. In another 
embodiment, retailer processor 110 and retailer regional processor 114 are 
separate devices which may be either co-located with each other or remotely 
located from one another. For example, in one embodiment, retailer processor 110 
and regional processor 114 are co-located at a particular retail store. In another 
embodiment, retailer processor 110 is located at a particular retail store and retailer 
regional processor 1 14 is remotely located at a regional office. 

[0070] Regardless of the location of retailer regional processor 114, retailer 

regional processor 1 14 receives and processes similar information from each of the 
retailer processors 110 associated with each of the retail stores owned by the 
same retailer. Whether the system 100 comprises a retailer regional processor 
114 or a retailer national processor may be a function of the number of stores 
maintained by a particular retailer. That is, a larger retailer who has numerous 
stores throughout the country, for example, may choose to have a plurality of 
regional processors, while a smaller retailer with a few stores scattered across the 
country may be better served by a single, national processor. In exemplary 
embodiments, the retailer regional processors 114 and/or national processors 
communicate with a suitable database 115 or other storage device which is 
configured to store and maintain purchase data and any other suitable retailer 
information. In another exemplary embodiment, retailer regional processor 114 
may receive, process, and store manufacturer data, such as information regarding 
products and/or services and UPC data, from manufacturers 106 who have 
enrolled in the system 100. The manufacturer data may be stored in any suitable 
form, including data tables or lookup tables. 

[0071] With momentary reference to FIG. 2, retailer terminal 108 may comprise a 

rewards terminal 116 through which a consumer may be updated with regard to 
various aspects of the system. For example, rewards terminal 116 may inform a 
consumer of the number of reward points that they have accumulated from all 
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system participants and the types of awards that may be obtained using those 
reward points. Moreover, rewards terminal 116 may suggest to the consumer 
various awards for which the consumer is eligible based upon the rewards points 
generated by the consumer's network-wide purchases. In this context, network- 
wide purchases include any purchases of items corresponding to retailers and/or 
manufacturers participating in the system 100. 

[0072] In an exemplary embodiment, rewards terminal 116 operates in real-time. 

in this context, "real-time" means that reward points are immediately, or nearly 
immediately, updated at the time purchases are made and are therefore 
immediately redeemable by the consumer at the a point of sale. Thus, for 
example, a consumer may be informed by rewards terminal 1 16 at the point of sale 
that the item being purchased by the consumer may be purchased using the 
consumer's accumulated reward points, including points accumulated on a network 
level. Points accumulated on a network level enable consumers to accumulate 
points more rapidly than would be possible if only a single retailer or group of 
retailers were issuing the points. In one embodiment, rewards terminal 116 may 
update a consumer's rewards points in real-time and, in response to the 
consumer's particular points total, issue a coupon, a gift certificate, and/or 
additional bonus points to the consumer. 

[0073] In another exemplary embodiment, the system may operate in batch 

mode, wherein points totals are calculated, stored, and periodically updated for 
access by the retailer terminal 108, including POS terminal 112 and/or rewards 
terminal 1 16. Thus, in this embodiment, the consumer may be notified of available 
points sometime after a purchase, or a suggestive sale may take place after a 
purchase. The total point count or suggestive sale may take into account points 
generated and accumulated as the result of network-wide purchases. 

[0074] In various alternate embodiments of the invention, retailer terminal 108 

may include a rewards terminal 116 but not a POS terminal 112; a POS terminal 
1 12 but not a rewards terminal 1 16; or a POS terminal 1 12 in communication with a 
rewards terminal 116. In alternate embodiments, where terminal 108 includes a 
POS terminal 1 12 and a rewards terminal 116, the two terminals 112 and 116 may 
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be variously implemented as separate terminals, integrated terminals, or software 
within a device. In another embodiment, where terminal 108 comprises a rewards 
terminal 116 but not a POS terminal 112, terminal 108 may be a kiosk terminal 
located within a retail store or some other remote terminal which is capable of 
recognizing a consumer ID and communicating with the system 100. A consumer 
may use independent rewards terminal 1 16 to do, for example, any of the following: 
view accumulated reward points totals; view potential awards which the consumer 
may obtain in exchange for various numbers of points; select an award; redeem 
rewards points for a selected award; request and/or receive a reward points 
advisory statement; and/or view a directory of participating retailers, manufacturers, 
and third-party providers. 
u. [0075] In another exemplary embodiment, system 100 further comprises a 

Sf consumer terminal 118. Consumer terminal 118 is any remote terminal through 

which a consumer may access other aspects of the system 100. Consumer 
terminal 118 may comprise any of the input devices, computing units, or computing 
systems described above. Further, consumer terminal 118 communicates with the 
system 100 through any of the communications networks described above. In one 
l| embodiment, consumer terminal 118 permits a consumer to engage multiple facets 

of the system 100 in an interactive online communications environment. The 
interactive online environment made available through consumer terminal 118 is an 
extension of the network-level incentive award program and is implemented in 
conjunction with other aspects of the system 100. In this context, a consumer may 
uses consumer terminal 118 for a variety of purposes. In one embodiment, 
consumer terminal 118 may be used to communicate with and receive information 
from the central rewards mechanism 102. For example, a consumer may use 
consumer terminal 118 to do any of the following: enroll in the system; receive 
statements or reports regarding accumulated reward points totals; receive bonus 
details; view potential awards which the consumer may obtain in exchange for 
various numbers of points; select an award; receive redemption information; view 
points adjustments; redeem rewards points for a selected award; request and/or 
receive a reward points advisory statement; receive information regarding where 
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and how points were earned and/or how points were redeemed; receive 
information regarding expiration dates for points earned; receive information 
relating to any applicable fees; receive information regarding marketing 
promotions; and/or view a directory of participating retailers, manufacturers, and/or 
third-party providers. 

[0076] In another embodiment, consumer terminal 118 may be used to interact 

with and/or make purchases and generate rewards points from participating online 
retailers, as illustrated by the various phantom lines in FIG. 1. The online retailer 
may then communicate with the central rewards mechanism 102 to transmit and 
process a consumer ID, purchase data, etc., as described above with reference to 
retailer 104 of FIG. 1. Information communicated between the online consumer, 
the online retailer, and the online central rewards mechanism may include, for 
example, product or service information, prices, availability of the product or 
service, shipping information, rewards points information, available awards, 
information regarding points ratios and points redemption, and/or the like. In one 
embodiment, consumer terminal 118 operates in real-time, as described above 
with respect to rewards terminal 116. In another embodiment, the consumer 
terminal 118 may operate in batch mode, as described above. In still a further 
embodiment, consumer terminal 118 operates in a manner which includes aspects 
of both real-time functionality and batch mode functionality. 

[0077] In accordance with a further aspect of the invention, the system 100 may 

comprise a rewards server 120 in communication with a database 121, as 
illustrated in FIG. 2. Database 121 may be any type of database, such as any of 
the database products described above for example. Database 121 may be 
organized in any suitable manner, including as data tables or lookup tables. In an 
exemplary embodiment, rewards server 120 may be any hardware and/or software 
that is configured to communicate with the central rewards mechanism 102 and 
either the retailer processor 1 10 or the retailer regional processor 1 14. In alternate 
exemplary embodiments, rewards server 120 may be integrated with retailer 
system 104; rewards server 120 may be integrated with central rewards 
mechanism 102; or rewards server 120 may be separate from both retailer system 
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104 and central rewards mechanism 102. In a further embodiment, the rewards 
server 120 may communicate with both a retailer national processor (not shown) 
and the central rewards mechanism 1 02. 
[0078] In an exemplary embodiment, rewards server 120 receives, processes, 

and stores both manufacturer data and retailer data. Manufacturer data may 
include descriptions of products and/or services and UPC data transmitted from 
manufacturers 106 who have enrolled in the system 100. The manufacturer data 
may be stored in any suitable form, including data tables or lookup tables. Retailer 
data may include descriptions of products and/or services and SKU data 
transmitted from retailers 104 who have enrolled in the system 100. The retailer 
data may be stored in any suitable form, including data tables or lookup tables. 
y,[0079] In an exemplary embodiment, the rewards server 120 performs a plurality 

of functions that might otherwise be performed by the central rewards mechanism 

Si 102. For example, since rewards calculations require significant processing and 

4i 

=4f memory resources, performance of calculations processing by the rewards server 

120 at the regional level lessens the processing load on the central rewards 
mechanism 102, thereby increasing the efficiency of the central rewards 
mechanism 102. In an exemplary embodiment, each retailer's region, which 
comprises a plurality of that retailer's stores or outlets, accesses a rewards server 
120 which acts as an intermediary between the retailer regional processor 1 14 and 
the central rewards mechanism 102. This configuration relieves the processing, 
power, memory, and other requirements of the central rewards mechanism 102. 
Moreover, each retailer is but one of many retailers that may participate in the 
network level rewards structure. Accordingly, a plurality of rewards servers 120 
may be in communication with the central rewards mechanism 102 as well as each 
of the participating retailer regional processors 114, further alleviating the 
processing burden and freeing up the resources of the central rewards mechanism 
102. 

[0080] Implementations which include at least one independent rewards server 

120 are also advantageous because cost-effective communications links may be 
used to facilitate communications with the central rewards mechanism 102. 
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Performance by the rewards server 120 of many of the "intelligence functions" of 
the system 100, permits transmission of only particular forms of purchaser 
information to the central rewards mechanism 102. In an exemplary embodiment, 
data sent from the rewards server 120 to the central rewards mechanism 102 may 
include the consumer ID and the total number of rewards points earned by a 
consumer in a particular transaction. In another exemplary embodiment, data 
transmitted by the rewards server 120 to the central rewards mechanism 102 may 
also include any pre-selected aspect of the consumer profile, any pre-selected 
aspect of the purchase data, and/or any other pre-selected data associated with a 
consumer, a retailer, a manufacturer, and/or a third-party provider. Pre-selection of 
the types of data transmitted by the rewards server 120 to the central rewards 
u mechanism 102 may be conducted by the system administrator, a retailer, a 

manufacturer, and/or a third-party provider. Thus, data which may be useful for 
purposes of data analysis but unrelated to the rewards feature, such as the 
characteristics of the particular item purchased for example, may not need to be 
transmitted to the central rewards mechanism 102. 
[0081] Exemplary functions performed by the rewards server 120 may include the 

3j association of UPC and SKU data; manipulation of the rewards criteria applicable 

W in particular cases, which may further depend upon the retailer, manufacturer, 

3 and/or third-party provider involved in a specific transaction with a consumer; 

calculation of rewards benefits earned by the consumer; filtration functions for 
determining which data is transmitted from the rewards server 120 to the central 
rewards mechanism 102; and/or various types of data analyses, as described 
above. In an exemplary embodiment, the retailer system 104 houses, maintains, 
and updates the hardware and/or software of the rewards server 120. In another 
embodiment, rewards server 120 may be housed, maintained, and updated by the 
system administrator. 

[0082] In accordance with another embodiment of the present invention, the 

system 100 permits an open payment system. Since the invention generally 
provides that consumer participation in the system is based upon a consumer ID, a 
purchaser may use any of multiple payment vehicles (such as cash, check, charge 
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card, credit card, debit card, MasterCard®, Visa®, and/or the American Express® 
Card for example) to make purchases at the various retailers and still participate in 
the system. Thus, in one embodiment, the consumer ID is independent of any 
particular payment vehicle, such as a credit card for example. 
[0083] However, alternate embodiments of the invention may be implemented 

which associate a consumer ID with a particular payment vehicle, such as a 
consumer's credit card account, charge card account, debit card account, and/or 
bank account for example. In this embodiment, the retailer conducting the 
transaction need only participate in the system to the extent that the retailer 
provides its SKU data to the system 100, such as to the rewards server 120. In 
other words, when a consumer ID is associated with an instrument (e.g., a credit 
card) from a third-party provider, the retailer need not provide a rewards terminal or 
E§ other terminal capable of processing the consumer ID, since the third-party 

5 provider may process the consumer ID as part of the payment transaction. Thus, 

| in this embodiment, rewards benefits may be earned by the consumer on a 

4* network-wide level without the retailer's direct participation in the rewards feature 

rg (notwithstanding the retailer's participation in transmitting SKU data to the system). 

j;J5 Moreover, it will be appreciated that a single consumer ID may be associated with 

Ml 

H multiple third-party payment vehicles, thereby allowing a consumer to generate 

rewards points regardless of the particular payment vehicle selected for a particular 
purchase. 

[0084] With reference to FIG. 4, an exemplary central rewards mechanism 402 

includes a central processor 404 in communication with other elements of the 
rewards mechanism 402 through a system interface or bus 406. A suitable display 
device / input device 408, such as a keyboard or pointing device in combination 
with a monitor, may be provided for receiving data from and outputting data to a 
user of the system. A memory 410 associated with the rewards mechanism 402 
includes various software modules, such as an enrollment module 412 and an 
authentication module 414 for example. The memory 410 preferably further 
includes an operating system 416 which enables execution by processor 404 of the 
various software applications residing at enrollment module 412 and authentication 
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module 414. Operating system 416 may be any suitable operating system, as 
described above. Preferably, a network interface 418 is provided for suitably 
interfacing with other elements of the incentive awards system, such as the 
elements described above with reference to FIGS. 1-3. 
[0085] Lastly, a storage device 420, such as a hard disk drive for example, 

preferably contains files or records which are accessed by the various software 
modules, such as enrollment module 412 and authentication module 414. In 
particular, consumer data 422 comprises information received from a consumer 
upon registration with the rewards mechanism 402. Consumer rewards 424 
comprises data corresponding to each consumer's rewards account. Consumer 
rewards 424 may include cumulative rewards points totals as well as historical 
H totals and rewards account activity over time. Retailer records 426 comprises 

JJ information received from the various participating retailers. Manufacturer records 

Qj 428 comprises information received from the various participating manufacturers. 

Si One skilled in the art will appreciate that the storage device 420 and, therefore, 

-i 

S consumer data 422, consumer rewards 424, retailer records 426, and manufacturer 

^ records 428 may be co-located with the rewards mechanism 402 or may be 

3 remotely located with respect to the rewards mechanism 402. If the storage device 

420 is remotely located with respect to the rewards mechanism 402, 
communication between storage device 420 and rewards mechanism 402 may be 
accomplished by any suitable communication link but is preferably accomplished 
through a private intranet or extranet. 
[0086] Enrollment module 412 receives information from consumers, retailers, 

and/or manufacturers who wish to participate in the system. Enrollment module 
412 accesses and stores information in storage device 420. Authentication and/or 
validation of the identity and status of participants, including any of the other 
system components, may be performed by the authentication module 414, which 
preferably has access to the records residing in storage device 420. 
[0087] With reference to FIG. 5, an exemplary rewards server 502 includes a 

central processor 504 in communication with other elements of the rewards server 
502 through a system interface or bus 506. A suitable display device / input device 
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508, such as a keyboard or pointing device in combination with a monitor, may be 
provided for receiving data from and outputting data to a user of the system. A 
memory 510 associated with the rewards server 502 includes a variety of software 
modules, such as an association module 512, a rewards calculation module 514, a 
data analysis module 516, and a filtering module 518 for example. The memory 
510 preferably further includes an operating system 520 which enables execution 
by processor 504 of the various software applications residing at the various 
modules 512, 514, 516, and 518. Operating system 520 may be any suitable 
operating system, as described above. Preferably, a network interface 522 is 
provided for suitably interfacing with other elements of the incentive awards 
system, such as the elements described above with reference to FIGS. 1-3. 
[0088] Lastly, a storage device 524, such as a database as described above for 

| example, preferably contains files or records which are accessed by the various 

J software modules 512, 514, 516, and 518. In particular, manufacturer data 526 

if comprises information received from a manufacturer, such as descriptions or other 

information regarding the manufacturer's products and/or services as well as UPC 
data for example. Retailer data 528 comprises information received from a retailer, 
such as descriptions or other information regarding the retailer's products and/or 
services as well as SKU data for example. Consumer data 530 comprises 



m 



i3 information pertaining to a consumer, including a consumer ID, purchase data, a 

111 

consumer profile, and/or the like. One skilled in the art will appreciate that the 
storage device 524 and, therefore, manufacturer data 526, retailer data 528, and 
consumer data 530 may be co-located with the rewards server 502 or may be 
remotely located with respect to the rewards server 502. If the storage device 524 
is remotely located with respect to the rewards server 502, communication 
between storage device 524 and rewards server 502 may be accomplished by any 
suitable communication link but is preferably accomplished through a private 
intranet or extranet. 

[0089] Referring next to FIGS. 6 and 7, the process flows depicted in these 

figures are merely exemplary embodiments of the invention and are not intended to 
limit the scope of the invention as described above. It will be appreciated that the 
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following description makes appropriate reference not only to the steps depicted in 
FIGS. 6 and 7 but also to the various system components as described above with 
reference to FIGS. 1-3. 

[0090] FIG. 6 is a flowchart illustrating an exemplary process for capturing and 

processing POS SKU data in accordance with the present invention. The 
association or matching of UPC and SKU data begins with POS data capture (step 
602). When a consumer presents a consumer ID to a retailer 104 at the time of 
purchasing an item from the retailer 104, the consumer ID is processed by a 
rewards terminal 1 16 that recognizes the consumer ID and identifies the consumer 
as a participant in the system 100. Purchase data is captured by the retailer POS 
terminal 112. Purchase data may include any of the following: a SKU number; a 
unit price; a total transaction price; the payment vehicle(s) used; a store ID which 
identifies the particular store location if a retailer operates more than one store; a 
department ID, if the store has multiple departments; the date of the transaction; 
the time of the transaction; the employee ID of the store clerk who facilitates the 
transaction; a POS terminal ID to identify the particular terminal conducting the 
transaction; any retailer-specific incentive program ID; and/or the like. The retailer 
POS terminal 112 creates a transaction file comprising the consumer data 
(including a consumer ID) and purchase data (including a SKU number associated 
with each item purchased), and the transaction file is then stored by the retailer 
processor 1 10 in database 1 1 1 (step 604). 

[0091] The various transaction files may be consolidated by the retailer processor 

110 and then forwarded to the retailer regional processor 1 14 (step 606) for further 
back-office and cumulative data analysis performed by retailer 104. 

[0092] In an exemplary embodiment, the transaction file is transmitted by either of 

the retailer processor 110 or the retailer regional processor 114 to the rewards 
server 120 (step 608). The SKU information for each item included in the 
transaction file is then matched to or associated with corresponding UPC 
information which identifies the related manufacturer 106. An exemplary 
association process is illustrated in the flowchart of FIG. 7. Association of SKU and 
UPC data may be accomplished through any data association technique known 
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and practiced in the art. For example, the association may be accomplished either 
manually or automatically. Automatic association techniques may include, for 
example, a database search, a database merge, GREP, AGREP, SQL, and/or the 
like. 

[0093] In an exemplary embodiment, database 121 receives and stores 

manufacturer data, including UPC data, from manufacturer 106 (step 702). 
Database 121 also receives and stores retailer data, including SKU numbers, from 
retailer 104 (step 704). In an exemplary implementation, database 121 stores 
manufacturer data in a separate manufacturer data table for each participating 
manufacturer 106. Each manufacturer data table may comprise a plurality of fields, 
such as "UPC" and "product description" for example, and a plurality of records, 
« each of which corresponds to an item offered by the participating manufacturer 

U 106. In one embodiment, database 121 stores retailer data in a separate retailer 

| data table for each participating retailer 104. Each retailer data table may comprise 

k a plurality of fields, such as "SKU" and "product description" for example, and a 

£ plurality of records, each record corresponding to an item offered by a participating 

retailer 104. 

1 [0094] Data from each of the manufacturer and the retailer data tables is then 

if 

2 associated (step 706). The association step may be accomplished by a database 
merge function, for example, using a "key field" in each of the manufacturer and 
retailer data tables. A "key field" partitions the database according to the high-level 
class of objects defined by the key field. For example, a "product description" class 
may be designated as a key field in both the manufacturer data table and the 
retailer data table, and the two data tables may then be merged on the basis of the 
"product description" data in the key field. In this embodiment, the data 
corresponding to the key field in each of the merged data tables is preferably the 
same. That is, the product descriptions in the manufacturer data table matches the 
product descriptions in the retailer data table. However, manufacturer and retailer 
data tables having similar, though not identical, data in the key fields may also be 
merged by using AGREP, for example. 
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[0095] The result of the data association step is the creation of a separate data 

table, such as a UPC/SKU lookup table for example (step 708). Thus, when the 
rewards server 120 receives the data {e.g., consumer ID and SKU data) captured 
by the POS terminal (step 710), the rewards server 120 may search the UPC/SKU 
lookup table for the appropriate SKU number and then match the SKU to the 
corresponding UPC data (step 712). In an exemplary embodiment, the "SKU" and 
"UPC" fields in the UPC/SKU data table may be linked by an appropriate pointer. 
That is, when the rewards server 120 searches the UPC/SKU table and locates the 
particular SKU that has been captured and transmitted by the POS terminal, the 
specifically identified SKU datafield uses a pointer to direct the rewards server 120 
to the UPC datafield that corresponds to that SKU number. In an exemplary 
embodiment, the UPC datafield may be linked by one or more additional pointers to 
other key fields, such as a consumer ID, a retailer ID, a manufacturer ID, and/or a 
third-party ID. These additional pointers may be used as means for compiling data 
which may be useful in any of the various data analyses performed by the rewards 
server 120. In this manner, the association of POS SKU numbers and UPC data 
may be used to create a context in which standardized, network-wide analyses 
may be conducted. 

[0096] In an exemplary embodiment, the rewards server 120 utilizes the 

association information to calculate the rewards points generated by a consumer's 
purchase. For example, an appropriate series of pointers leading from a SKU to a 
UPC to a manufacturer ID may ultimately direct the rewards server 120 to employ a 
2-for-1 manufacturer rewards ratio to award a consumer twice as many points as 
the dollar amount of the consumer's total transaction price. In another exemplary 
embodiment, an appropriate series of pointers may result in the calculation of 
rewards points based upon multiple rewards criteria, such as rewards criteria 
associated with the manufacturer of the item as well as rewards criteria associated 
with a third-party provider for example. 

[0097] In a further embodiment, the rewards server 120 may use the association 

of UPC and SKU number data to analyze a variety of marketing variables across 
multiple manufacturers and retailers. For example, rewards server 120 may use a 
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series of pointers leading from an SKU to a UPC and then to a "consumer profile" 
field or table to correlate, for instance, consumer spending behaviors, particular 
manufacturers, and/or specific products across multiple retailers for example. 

In alternative embodiments, association of the UPC data and SKU number 
may take place at any of the rewards terminal 116, the retailer POS terminal 112, 
the retailer processor 110, the retailer regional processor 1 14 (or a retailer national 
processor), and/or the central rewards mechanism 102. 

In one embodiment, the retailer 104 may offer an incentive or loyalty 
program that is independent from the program offered by the system 100. 
Alternatively, the retailer 104 may use the system's UPC data for its own internal 
purposes. 

With momentary reference to FIG. 6, in one exemplary embodiment, the 
consumer ID and the earned rewards information are transmitted to the central 
rewards mechanism 102 after the rewards server 120 has filtered out consumer 
data associated with the consumer ID (step 610). In another embodiment, the 
central rewards mechanism 102 may use the captured and matched UPC 
information to determine rewards and/or for data analysis. 

Consumers may utilize computing devices to assist in the purchase and/or 
loyalty process, and in particular, the consumer may utilize a PDA to facilitate the 
purchase and/or loyalty process. During the purchase and/or loyalty process, the 
third-party provider or consumer may want to insure that any content downloaded 
or used in association with the PDA is secure in how it is collected, assembled, and 
delivered to the PDA device. In an exemplary embodiment, the PDA may have 
direct access to an Internet web site portal that offers secure personal content from 
a content provider, such as, for example, an on-line banking or financial institution. 
Using the web site portal, the content provider may offer personal or confidential 
data, such as financial information, to PDA users in a secure (e.g., encrypted) 
manner. The exemplary system and method may establish a PDA portal link to the 
web site for collecting specified information for a user and transmitting the 
information to the remote device. The information from the web site is retrieved 
using a secure open network protocol, such as SSL 3.0. The retrieved information 
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is unencrypted within a tamper resistant hardware encryption device (HED) and 
can be re-encrypted using the same HED and a user specific pass-phrase. The 
resulting secure information is downloaded to the PDA to be stored encrypted with 
the pass-phrase. When the PDA user wants to view the secure information, the 
user enters the pass-phrase, which will be used to decrypt the secure information. 
After a pre-set amount of time, the un-encrypted information is deleted from the 
PDA, which may require the user to enter the pass-phrase again. To receive 
secure information, the PDA facilitates contact with the portal and the 
establishment of a connection, authenticates itself to the network, and facilitates 
complete secured transactions or transmissions over the network. 
[00102] This approach substantially secures the content (or a portion of the 

content) from its source channel to the PDA. The exposure or visibility of the 
| personal content in an unsecured state is essentially eliminated or minimized. The 

phrase "end to end" is often used to describe when content is substantially secure 
from its source to when it is used. It is desirable to expand this concept for PDAs 
because much of the time they are used in a disconnected fashion. Being 
disconnected, the content is physically stored on the PDA and can be accessed 
multiple times. So once the connection to the network has been broken, the 
content should continue to be secure against improper use. Therefore, it is helpful 
if the content can be secured while on the PDA and be viewable after the user has 
properly authenticated himself. The content, or any portion thereof, may be 
secured at any point or segment along the transmission or storage or all points 
along the process depending on the needs of the system. 
[00103] Providing content security between multiple layers of a system usually 

includes each pair of communicating components negotiating the method used for 
securing any interchange between them. Each step could use a different method 
for encrypting the content and producing a challenge for securing an environment, 
because data will be in "the clear" (e.g., not encrypted) at intermediary points along 
the communication path. However, since the content being collected may be in 
"the clear" while inside a tamper resistant, programmable cryptographic module, 
e.g., the HED, the data is substantially secure from eavesdropping and direct 
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attacks on the hardware in which the data is in "the clear". The data can be 
secured using a standard algorithm using a pass-phrase established by the user. 
This pass-phrase can serve to authenticate the user when viewing content on the 
PDA. Moreover, the standard protocols used by the Internet are not necessarily 
trivial in the resources that are used to decrypt the content. As such, a standard 
algorithm may be used for encrypting the content to be placed onto the PDA. This 
is so because standard protocols have had rigorous analyses to verify and decrypt 
the content, for example, without using a pass-phrase or the Triple Data Encryption 
Standard (3DES) key. 

[00104] An exemplary system and method of the present invention secures the 

data from its source to when it is actually viewed or used by the authorized user. It 
U can use methods for securing the content that are appropriate for the environment 




being used. For example, to collect the content from the source channels, 
standard internet methods (SSL) may be used. However, since some PDAs are 
limited in their processing capabilities, a different method, requiring less resources, 
of securing the data on the device can be used (e.g., ECC). 



[001 05] 



Once this content and the mechanism to push it onto the PDA are 
available, all types of personal content can be placed onto the customer's PDA for 



m 



their off-line use. This could include their travel itineraries, monthly account 
statements, investment portfolio, and or the like. This enables personal content to 
be securely distributed to the customer's PDAs, thereby placing content onto a 
device that can be connected or disconnected. In addition, how the content is used 
will increase the value of the content that content providers make available. 



[00106] 



As more fully described in FIGS. 8-1 1 , PDA portal registration, establishing 
a secure session, PDA updates, and the like are illustrated in accordance with 
various exemplary embodiments of the present invention. 



[00107] 



In one embodiment, FIG. 8 illustrates PDA portal registration where a user 
connects to a PDA portal 801 web site from a desktop browser 803, using a secure 
open systems transport protocol such as SSL 3.0. The user indicates that selected 
content be refreshed (synching a PDA 807) and PDA 807 facilitates a connection 
to PDA portal 801 . In an exemplary embodiment of the present invention, the user 
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need not provide her user ID and password for each secure channel each time 
PDA 807 is synched. In this manner, the session for PDA 807 may have a different 
expiration rate (e.g., than the about 10 minutes used for wired Internet use). 
[00108] For example, the user registers that certain selected content can be 

downloaded to PDA 807 during a synchronization event. The user selects content 
from secure web sites or channels and provides a user ID and password (e.g., a 
PDA Portal management user ID and password). The user provides a PDA 
security pass-phrase, which normally includes a string of numbers and characters. 
The user ID and password can be used later to authenticate the user prior to 
maintaining the user's PDA portal information. The pass-phrase is used with the 
encryption mechanism used to protect the content during transmission and storage 
on PDA 807 at the later synchronization event. 
[00109] PDA 807 may connect to a PDA portal web server 809 by, for example, 

PDA 807 and/or desktop browser 803 communicating with PDA portal 801 via the 
Internet. After connecting, the user enrolls in the PDA portal service and 
establishes an account including selection of channels to be collected during each 
synching request. PDA portal 801 then identifies the user and interrogates the 
channels she has selected. For example, a pass-phrase may be used when 
accessing secure channels. The user may enter the pass-phrase on a form on 
desktop browser 803, encrypt the pass-phrase using, e.g., SSL 3.0, and forward 
the pass-phrase to PDA portal 801. If one (or more) of the channels includes 
secure content, the PDA portal connects to the source channel and collects the 
desired content. For example, optionally, establishing sessions with secure 
channels can be executed from desktop browser 803, rather than PDA 807. 
Establishing sessions can include establishing an initial session, a new session, or 
renewing an expired session. 
[00110] The user can use any appropriate device to register with PDA portal 801, 

including PDA 807 or desktop browser 803 (e.g., a personal computer). The 
content to be downloaded may include secure services (e.g., where the user 
already has a relationship with a third-party provider by a prior enrollment) or new 
secure services (e.g., where the user does not already have an existing 
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relationship with the third party provider). If a new service is being requested for a 
PDA download, the user can separately register for that service through the normal 
web site registration process for the service and provide a user ID and password 
for access to the secure service. Secure services selected by the user can include 
incentive programs, such as frequent flyer services or redemption and shopping 
services. Other information that may be entered at registration includes 
demographic information, such as name and address and key information, such as 
an account number for later use when retrieving data from the secure service. In 
the event that a user forgets their PDA portal user ID or password, the previously 
saved pass-phrase or user demographic information can be used to verify the user 
during a secure conversation between desktop browser 803 and PDA portal 801. 
After the user has been verified, PDA portal 801 can provide the user with their 
forgotten user ID or allow the user to change their password. In an alternate 
embodiment, instead of a separate user ID and password, the pass-phrase could 
also be used to authenticate the user prior to maintaining their PDA portal 
information. 

[001 11] Instead of connecting directly to the source, PDA portal 801 can connect to 

a hardware encryption device (HED) 805 with the request. HED 805 intercepts the 
response, decrypts the SSL 3.0 pass-phrase, and stores the pass-phrase on HED 
805. For each secure channel selected, the user may provide key information 
needed to access the pertinent content from that channel (e.g., an account 
number). Such data or information is entered onto a form on PDA 807, encrypted 
using, for example, SSL 3.0 following a key exchange with PDA portal 801 
terminated within HED 805, and forwarded to PDA portal 801. HED 805 can 
decrypt the SSL traffic, extract the name value pairs, encrypt the value using a 
3DES key, e.g., known only to HED 805. HED 805 can then pass the URI (Uniform 
Resource Identifier), including the name value pairs, but with the value replaced 
with the 3DES encrypted value, to PDA portal 801. PDA portal 801 stores the key 
information in a database or file. The pass-phrase can be stored securely by 
storing it directly on HED 805, encrypting it on HED 805, or using a key (e.g., 
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3DES) known to HED 805 and encrypting the pass-phrase within HED 805 and 
storing the pass-phrase external to HED 805 (e.g., in a database or file). 
[00112] When PDA 807 synchronizes for the first time, PDA portal 801 may not 

recognize the account being requested. The user can identify themselves by 
entering their user ID and password or pass-phrase on PDA 807. PDA portal 801 
can associate this identifier with the user's profile (e.g., kept locally to PDA portal 
801). The initial synchronization uses a secure open network transport protocol 
(e.g., SSL 3.0), because HED 805 identifies the user before the pass-phrase can 
be used for encryption between PDA 807 and HED 805. 
[00113] Since the encryption device is secure, there is no need to store the pass- 

phrase in an encrypted form. HED 805 connects to the channel source using a 
secure connection where the encryption key is negotiated between the two parties. 
The channel source content is prepared and returned to HED 805 in an encrypted 
form. For each secure channel selected, the user may provide the key information 
needed to access the relevant content from that channel (e.g., an account 
number). Such data or information is entered onto a form, encrypted using, for 
example, SSL 3.0 following a key exchange with PDA portal 801 (e.g., HED 805), 
and forwarded to PDA portal 801. Key information need not be visible to PDA 
portal 801 , even though such key information may be housed in the PDA portal 801 
environment. HED 805 intercepts the request and decrypts the content. The key 
information is stored on HED 805 in an unencrypted state (since HED 805 is a 
secure device) for that PDA portal 801 account. However, before forwarding the 
content to PDA portal 801 for further processing, HED 805 interrogates the content. 
As HED 805 interrogates the content, any imbedded links can be isolated. The 
resulting content can then be re-encrypted using a standardized algorithm (such 
as, for example, ECC) using the encryption key (pass-phrase) that has been 
established by the user. The encrypted content as well as the "in the clear" links 
will then be returned to PDA portal 801 for continued processing. 
[001 14] The content will then be forwarded to PDA 807 for storing either piecemeal 

as the collection of each channel is completed, or as a whole once all the content 
has been collected. As such, once the set-up has completed, the appropriate PDA 
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portal 801 account and connection information is stored in a user profile at PDA 
portal 801 and on PDA 807. The content is then sent to PDA 807 in the same form 
it had been received by PDA portal 801 from the channel (for non-secure content) 
or HED 805 (secure content). When the user desires to view the secure content, 
PDA 807 requests that the user authenticate himself by entering his pass-phrase, 
which will be used to facilitate decrypting the content. The authentication may exist 
each time the user tries to access this content, as the content will continue to be 
stored in an encrypted state on PDA 807. 
[001 15] In accordance with an exemplary embodiment of the present invention, the 

system and method utilizes HED 805 as a filter as the content is streamed into 
PDA portal 801. The content will be decrypted from the standard internet 
interaction, and re-encrypted using a standard algorithm. This re-encryption may 
2 be applied to only the content, not any links that are included. This allows the link 

Bf to be visible to the portal function to request the additional content pages. 

-J* 

[001 16] Since PDA portal 801 serves as a collection point, it is equally important to 

-f insure the content is secured as it is being collected and aggregated with content 

4* 

from other channel sources. This invention may secure the content itself while 
II exposing any links for additional data collection. In this way, the exposure of 

W secure data is minimized outside the source, HED 805, or when viewed by the 

u 

authenticated user. 

[00117] FIG. 9 illustrates a PDA portal 901 establishing a session for secure 

content in accordance with an exemplary embodiment of the present invention. 
The user indicates that a PDA 907 is to sync with PDA portal 901 to refresh the 
content for the subscribed channels (e.g., subscribed content). PDA 907 connects 
to a PDA portal web server 909. For example, PDA 907 may use the Internet to 
connect to PDA portal 901. PDA portal web server 909 interrogates the channels 
to be refreshed for the request (e.g., interrogates the secured content to be 
refreshed) from either PDA 907 or from a database or file connected to PDA portal 
901. If secure content (e.g., from a credit card company) is desired, PDA portal 
901 returns to PDA 907 for the session cookie for each secure channel. If secure 
content is desired, PDA portal 901 requests the previously encrypted session ID 
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from a database or file system local to PDA portal 901. For example, PDA portal 
901 can use a HED 905 to encrypt the session ID with 3DES key generated 
internal to HED 905. The session cookie includes a session identifier identification 
(e.g., session ID). The session ID for each secure channel is requested from PDA 
907. The session ID is encrypted with the user's pass-phrase or with a different 
key (such as, a 3DES key), e.g., only known to HED 905. 
[00118] Establishing sessions can include establishing an initial session, a new 

session, or renewing an expired session. If a session cookie does not exist, 
processing continues where HED 905 at PDA portal 901 intercepts a pass-phrase, 
decrypts the SSL 3.0 pass-phrase, and stores the pass-phrase on HED 905. Since 
HED 905 is secure, there is no need to store the pass-phrase in an encrypted 
state. In an exemplary embodiment of the present invention, the secure content on 
HED 905 is visible after the user enters his or her pass-phrase. If the session 
cookie does not exist, PDA portal 901 requests PDA 907 to prompt the user to 
enter their user ID and password for the subscribed channel, e.g., secure 
content(each channel or secure site can have a different user ID and password 
pair). For example, PDA 907 encrypts the user ID and password using ECC with 
the pass-phrase provided by the user. The pass-phrase for the user can be 
entered on PDA 907 during the user ID and password sync event, since the pass- 
phrase is not stored on PDA 907. The pass-phrase for the user is stored on HED 
905. 

[00119] The encrypted user ID and password is returned to PDA portal web server 

909, and PDA portal web server 909 forwards the request to HED 905. In one 
exemplary embodiment of the present invention, PDA portal web server 909 does 
not have access to the user ID and password, the pass-phrase, and the session 
cookie (which may not be encrypted). HED 905 decrypts the user ID and 
password using ECC and the pass-phrase for the user account. The pass-phrase 
used for decryption of the user ID and password was previously stored at web 
server 909 using HED 905 as described in connection with FIG. 8. HED 905 
encrypts the request using SSL 3.0 following a key exchange with a channel web 
server 911 of a channel 913. For example, HED 905 may communicate with 
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[00120] 



[00121] 



channel web server 911 via the Internet If the user ID and password is 
successfully decrypted (because the pass-phrase delivered from PDA 907 is the 
same as the pass-phrase previously provided during registration), then HED 905 
re-encrypts the user ID and password using a standard secure internet transport 
protocol, such as SSL 3.0, following a key exchange with channel web server 911 
to provide secure content. The encrypted session request is directed to channel 
web server 911, and channel web server 911 decrypts the user ID and password, 
verifies the user ID and password pair, and establishes a session. The encrypted 
authentication request is directed to channel web server 91 1. Channel web server 
911 decrypts the user ID and password, verifies the user ID and password pair, 
and establishes a session, e.g., by issuing a session ID within an HTTP cookie 
(e.g., a session cookie). Accordingly, the security of PDA portal 901 can be 
enhanced because the user ID and password was not "in the clear" (e.g., outside 
HED 905). In this manner, if a hacker gained access to PDA portal 901 , the hacker 
could not learn the user ID and password by monitoring traffic at PDA portal 901. 
Channel content 915 communicates with channel web server 911 to serve the 
requested content and return it to channel web server 91 1 . 

An encrypted session cookie is returned to HED 905, and HED 905 
decrypts the SSL 3.0 session cookie and encrypts the session cookie with ECC. 
The encryption of the session cookie with ECC uses the user pass-phrase as the 
key. The credentials are hashed with a random number and salted. The encrypted 
session cookie is returned to PDA portal web server 909, directed to PDA 907, and 
stored on PDA 907 in its encrypted form. As the session cookie is received, PDA 
907 facilitates registration of the secure channel which the session cookie is to be 
used with. 

Once the session cookie has been established, the normal method for 
refreshing the content for the selected channels is executed. Accordingly, HED 
905 at PDA portal 901 intercepts a pass-phrase, decrypts the SSL 3.0 pass- 
phrase, and stores the pass-phrase on HED 905. Since HED 905 is secure, there 
is no need to store the pass-phrase in an encrypted state. Expiration of the 
session cookie will be configurable. These types of session cookies need not 
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expire every ten minutes; rather, such session cookies could have a duration of 
several months or more, for example. 
[00122] In an alternate embodiment of the present invention, PDA portal 901 

requests PDA 907 to prompt the user to enter his user ID and password for the 
subscribed secure content. PDA portal 901 uses a secure open network transport 
protocol, such as SSL 3.0, to transmit the user ID and password from PDA 907 to 
HED 905 as the end point for the SSL 3.0 transmission. HED 905 re-encrypts the 
user ID and password using a standard secure internet transport protocol, such as 
SSL 3.0, following a key exchange with channel web server 91 1 to provide secure 
content. The encrypted authentication request is directed to channel web server 
91 1 . Channel web server 91 1 decrypts the user ID and password, verifies the user 
ID and password pair, and establishes a session, e.g., by issuing a session ID 
within an HTTP cookie (e.g., a session cookie). Accordingly, the security of PDA 
portal 901 can be enhanced because the user ID and password was not "in the 
clear" (e.g., outside HED 905). 

In an alternate embodiment of the present invention, HED 905 can encrypt 
the session ID with the pass-phrase and return the result to PDA Portal 901, which 
can be transmitted to PDA 907 for storage as the session ID for the associated 
secure content or channel. 
[00124] In another alternate embodiment of the present invention, the session ID 

can be stored locally to PDA portal 901 and protected with a 3DES key along with 
a salt. Using HED 905, a hash of the session ID with the stored salt using a 
hashing algorithm such as SHA-1, as described in "Applied Cryptography: 
Protocols, Algorithms, And Source Code In C", supra, can be completed. The 
hashed session ID can be provided to PDA portal 901 to be transmitted to PDA 
907 for storage associated with the appropriate secure content or channel. 
[00125] Once the session ID has been established and stored, synchronizing the 

content for the selected secured web sites is executed. Accordingly, PDA 907 
sends a Universal Resource Identifier (URI) to PDA portal 901 requesting the 
secure content. Depending on the security desired for the URI request, the URI 
request can be transmitted (e.g., unencrypted), encrypted using an open networks 
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transport protocol (such as SSL 3.0), or encrypted using a user-entered pass- 
phrase and an encryption algorithm such as ECC. If the URI is encrypted using the 
user pass-phrase, PDA portal 901 can request HED 905 to decrypt the URI, e.g., 
using the previously stored user pass-phase. PDA portal 901 supplies the URI, the 
previously encrypted (e.g. 3DES) and saved session ID, and any desired encrypted 
(e.g. 3DES) and saved key information to HED 905. The key information can be 
provided to HED 905 as a name value pair, e.g., with the key date encrypted. HED 
905 decrypts the session ID and the key information. The actual URI request is 
built by filling in name value pairs with the decrypted value and building the session 
cookie. 

[00126] In another alternate embodiment of the present invention, if the session ID 

was previously encrypted using the pass-phase and returned to PDA 907 for 
storage, the encrypted session ID can be forward to PDA portal 901 (e.g., typically 
as a session cookie associated with the relevant URI). In such a case, PDA portal 
901 forwards the URI request, the user ID, and the encrypted session cookie to 
HED 905. HED 905 decrypts the session cookie associated with this user ID using 
the pass-phrase. 

! [00127] In another embodiment of the present invention, if a salted and hashed 

session ID was previously stored on PDA 907, the salted and hashed session ID 
can be forwarded with the URI request to PDA portal 901 . PDA portal 901 
forwards the URI request, the related user ID, the locally encrypted (e.g. 3DES) 
and stored session ID, and the salted and hashed session ID returned from PDA 
907 to HED 905. HED 905 decrypts the session ID previously locally stored and 
salts and hashes the result. If the newly created value matches the salted and 
hashed value returned from PDA 907, then the hashed session ID previously sent 
to PDA 907 is the same one that was returned without exposing the actual session 
ID to exposure from theft from PDA 907. 
[00128] HED 905 negotiates a secure open network transport protocol, terminating 

in HED 905, with the secure content web site. In one alternate embodiment of the 
present invention, the transport protocol is decrypted within HED 905, and re- 
encrypted using the user pass-phrase. The re-encrypted content is transmitted to 
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PDA 907 directly from HED 905 or by PDA portal 901 , if PDA portal 901 is used as 
an intermediary for PDA 907. HED 905 extracts links from the current secure page 
and provides the links back to PDA portal 901. As such, HED 905 determines 
(e.g., based on its synchronization rules), if that additional content should be 
synchronized to PDA 907. 
[00129] In a less secure environment, PDA Portal 901 receives the returned secure 

content and passes that content to HED 905. HED 905 encrypts the content using 
the user pass-phrase and transmits the secure content to PDA 907 or by PDA 
portal 901 , if PDA portal 901 is used as an intermediary for PDA 907. In such an 
embodiment, PDA portal 901 request any additional links within the current page 
based on its synchronization rules, 
ki [00130] If the fetch of the secure content fails, because the secure web site has 

expired the session, for example, PDA 907 can be challenged to enter the secure 
web site user ID and password again (e.g., as described above in connection with 
when the session did not exist). The content is forwarded to PDA 907 for storage 
(either piecemeal as the collection of each channel is completed or the encrypted 
content will be saved on PDA portal 901 and forwarded to PDA 907 as a whole) 
once all the content has been collected. PDA 907 accepts content until PDA portal 
901 signals the synchronization event is over. When the user desires to view the 
secure content, PDA 907 requests that the user authenticate himself by entering 
his pass-phrase, which is used to decrypt the content. The unencrypted content 
exists on PDA 907 for a predetermined amount of time, after which it can 
automatically be deleted. The predetermined time is determined by the user profile 
stored at PDA portal 901 . To view the content again, the user may enter the pass- 
phrase again. After using the pass-phrase, the pass-phrase can be purged from 
PDA 907. If the user removes the channel with secure content or logs out, for 
example, the secure content and associated session cookie are deleted from 
PDA's 907 storage. At the next synch, PDA portal 901 is notified and the channel 
is removed from the user's profile. 
[00131] Thus, FIG. 9 illustrates establishing a PDA portal session for secure content 

in accordance with an exemplary embodiment of the present invention. 
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[00132] FIG. 10 illustrates a PDA portal registration and establishing a session in 

accordance with an exemplary embodiment of the present invention. The user 
goes to a PDA portal 1001 web site from their desktop web browser 1003. For 
example, a PDA 1007 and/or desktop browser 1003 may communicate with a PDA 
portal 1001 via PDA portal web server 1009 (e.g., via the Internet). The user 
enrolls in the PDA portal service and establishes an account including selection of 
channels to be collected during each sync request. For example, the pass-phrase 
used when accessing secure channels must be entered on a form on desktop web 
browser 1003, encrypted using SSL 3.0, and forwarded to PDA portal 1001. At 
PDA portal 1001, an HED 1005 intercepts the pass-phrase form, decrypts the SSL 
3.0 pass-phrase, and stores the pass-phrase on HED 1005. Since HED 1005 is 
secure, there is no need to store the pass-phrase in an encrypted state. 
5 [00133] For each secure channel that is selected, the user provides key 

I3 information needed to access the pertinent content from the channel (e.g., an 

:f account number). Additionally, since these channels are secure, each secure 

I channel will require the definition of the user ID and password for accessing the 

T account, for example. This data is entered onto a form and encrypted using SSL 

3 3.0 following a key exchange with PDA portal 1005 (e.g., with HED 1005). HED 



fj 1005 intercepts the request and decrypts the content. The key information is 

ij stored on HED 1005 in an unencrypted state (because HED 1005 is a secure 

^ device) for that PDA portal account. The user ID and password for the channel is 



not stored. Instead, the user ID and password is encrypted using, for example, 
SSL 3.0 following a key exchange with a channel web server 1011 of a channel 
1013. For example, HED 1005 may communicate with channel web server 1011 
via the Internet. Channel content 1015 communicates with channel web server 
1 01 1 to serve the requested content and return it to channel web server 1011. 
[00134] The encrypted user ID and password request is forwarded to channel web 

server 1011. Channel web server 1011 decrypts the user ID and password, 
verifies the user ID and password pair, and establishes a session. The session ID 
for the session is encrypted using SSL 3.0 and the negotiated keys. The encrypted 
session cookie is returned to HED 1005. HED 1005 decrypts the SSL 3.0 session 
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cookie and encrypts the session cookie with ECC using the user pass-phrase as 
the key. Additionally, the credentials are hashed with a random number and 
salted. 

[00135] The encrypted session cookie is directed to PDA 1007 and stored on PDA 

1007 in its encrypted form. As the encrypted session cookie is received, PDA 1007 
will register which secure channel the encrypted session cookie is to be used with. 
Once the set-up has completed, the appropriate PDA portal account and 
connection information is stored in the user profile at PDA portal 1001 and on PDA 
1007. Expiration of the session cookie will be configurable. These types of 
session cookies need not expire every ten minutes; rather, such session cookies 
could have a duration of several months, for example. Thus, FIG. 10 illustrates a 
PDA portal registration and establishing a session in accordance with an 
CS exemplary embodiment of the present invention. 

3 [00136] FIG. 11 illustrates a PDA portal channel update in accordance with an 

ft exemplary embodiment of the present invention. The user indicates that a PDA 

1 107 is to sync with a PDA portal 1101 to refresh the content for their subscribed 
channels. PDA 1107 connects to PDA portal 1101 via a PDA portal web server 
1 109. For example, a PDA 1 107 may communicate with PDA portal 1001 via the 
Internet. PDA portal web server 1 109 interrogates the channels to be refreshed for 
the request. If secure content is desired, PDA portal 1 101 returns to PDA 1 107 for 
the session cookie for each secure channel. If a session cookie does not exist, 
processing continues for establishing a session in accordance with FIG. 10 for 
example. 

[00137] The existing session cookie on PDA 1107 is returned to PDA portal 1101 

in its encrypted form. The session cookie along with the PDA portal user account 
is forwarded to an HED 1105. HED 1105 does not need to be encrypted as there 
is no secure content present. HED 1105 decrypts the session cookie using ECC 
and the pass-phrase for the user account. The user account is stored on PDA 
1 107 in accordance with FIG.s 8 and 10. The key information used to access the 
desired channel content is combined with the session cookie into a request. HED 
1105 encrypts the request using SSL 3.0 following a key exchange with a channel 
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web server 1111 of a channel 1113. For example, HED 1105 may communicate 
with channel web server 1111 via the Internet. The encrypted session request is 
directed to channel web server 1111, and channel web server 1111 decrypts the 
encrypted request and verifies the session ID contained within the cookie. Channel 
content 1115 communicates with channel web server 1111 to serve the requested 
content and return it to channel web server 1111. 
[00138] If the session ID is current and valid, channel web server 1111 passes the 

key information to the applicable channel content for fulfillment. If the session ID is 
invalid or expired, an error is returned to PDA portal 1101 and the user can re- 
establish their session cookie in accordance with FIG. 10 for example. Once the 
content has been collected, it is returned to channel web server 1111. Channel 
web server 1111 encrypts the response (referred to as the payload) using SSL 3.0 
O using the negotiated keys. Channel web server 1111 returns the encrypted 

VP-: 

§j response to HED 1105 at PDA portal 1101. 

4 [00139] HED 1 105 decrypts the response and interrogates the content, identifying 
,fi any links that are present. The remaining content is then encrypted with ECC 

h 

T using the pass-phrase that has been established for this user account as the key. 

5 The credentials are hashed with a random number and salted. 

fl [00140] The encrypted content passes to PDA portal web server 1109. For any 

Jj links present in the response, for example, PDA portal web server 1109 submits 

HU additional requests to the channel until all content is collected as described above. 

Once all content (either secure or unsecured) is collected, it is returned to PDA 
1107 and stored. To view the contents on PDA 1107, the user authenticates 
themselves. Authentication is completed by entering the user's pass-phrase, which 
is used to decrypt the content and make it available for viewing. 
[00141] Once the content is decrypted and viewed, the content is purged from 

PDA's 1 107 memory after a defined period of time. After entering the pass-phrase, 
the pass-phrase is purged from PDA's 1107 memory after a defined period of time. 
The purging and defined period of time are configurable depending on the needs of 
the system. If the user removes the channel with secure content or logs out, for 
example, the secure content and associated session cookie are deleted from 
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PDA's 1107 storage. Thus, FIG. 1 1 illustrates channel updates in accordance with 
an exemplary embodiment of the present invention. 
[00142] In the foregoing specification, the invention has been described with 

reference to specific embodiments. However, it will be appreciated that various 
modifications and changes can be made without departing from the scope of the 
present invention as set forth in the claims below. The specification and figures are 
to be regarded in an illustrative manner, rather than a restrictive one, and all such 
modifications are intended to be included within the scope of present invention. 
Accordingly, the scope of the invention should be determined by the appended 
claims and their legal equivalents, rather than by the examples given above. For 
example, the steps recited in any of the method or process claims may be 
executed in any order and are not limited to the order presented in the claims. 
[00143] Benefits, other advantages, and solutions to problems have been 

described above with regard to specific embodiments. However, the benefits, 
advantages, solutions to problems, and any element(s) that may cause any benefit, 
advantage, or solution to occur or become more pronounced are not to be 
construed as critical, required, or essential features or elements of any or all the 
claims. As used herein, the terms "comprises", "comprising", or any other variation 
thereof, are intended to cover a non-exclusive inclusion, such that a process, 
method, article, or apparatus that comprises a list of elements does not include 
only those elements but may include other elements not expressly listed or 
inherent to such process, method, article, or apparatus. Further, no element 
described herein is required for the practice of the invention unless expressly 
described as "essential" or " critical". 



52 



EXPRESS MAIL NO. EL609007152US 



[00144] 



H 

a 



1207943.5 



Abstract 

Consumers may utilize computing devices to assist in the purchase and/or 
loyalty process, and in particular, the consumer may utilize a PDA to facilitate the 
purchase and/or loyalty process. During the purchase and/or loyalty process, the 
consumer may need to insure that any content downloaded or used in association 
with the PDA is secure in how it is collected, assembled, and delivered to the PDA 
device. This system and method secures the data from its source to when it is 
actually viewed or used by the authorized user. The PDA may have direct access 
to an Internet web site portal that offers secure personal content from a content 
provider, such as, for example, an on-line banking or financial institution. Using the 
web site portal, the content provider may offer personal or confidential data, such 
as financial information, to PDA users in a secure (e.g., encrypted) environment. 
The exemplary system and method may establish a PDA portal link to the web site 
for collecting specified information for a user and transmitting the information to the 
remote device. To receive the information, the PDA contacts the portal and 
establishes a connection, authenticates itself to the network, and allows the user to 
complete secured transactions or transmissions over the network. 
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This application claims priority to, and the benefit of, U.S. Provisional 
Application No. 60/271,457, entitled "System and Method for Securing Data 
through a PDA Portal" filed on February 26, 2001 and U.S. Patent Application 
Serial No. 09/836,213, entitled "System and Method for Networked Loyalty 
Program", filed on April 17, 2001, which itself claims priority to U.S. Provisional 
Application Serial No. 60/279,817, entitled "System and Method for Networked 
Incentive Awards Program" filed March 29, 2001, all of which are hereby 
incorporated by reference in their entirety. 

FIELD OF THE I NVENTION 

Field of Invention 

The present invention relates generally to a personal digital assistant 
(PDA) portal, and more specifically, to a PDA portal which facilitates securing 
content while it is collected, assembled and delivered to the PDA device from the 
source to viewing by the user. 
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Background of the Invention 
f00031 Incentive award programs have been developed in a variety of industries 

to promote customer loyalty. Generally, such programs reward customers for 
repeat business with the same merchant or service provider by accumulating 
reward points which can then be redeemed in a plurality of ways, including 
exchanging the reward points for additional goods and services that may be 
selected from an approved list or a redemption catalog for example. The reward 
points are usually calculated using a predetermined formula or ratio that relates a 
customer's purchase volume (i.e., in terms of money value or some other volume 
parameter) to a certain number of reward points. For example, reward points may 
be issued on a one-for-one basis with each dollar that a customer spends on 
particular goods and services. 
H r00041 One well-known example of a customer incentive program is a "frequent 

S flyer" program which rewards airlines passengers with "mileage points" based upon 

13 the distances that the passengers fly with a particular airline. The mileage points 

~j may then be redeemed for free airfare or free car rentals. Other incentive award 

f programs are designed to induce usage of particular financial instruments, such as 

credit cards or debit cards, by accumulating reward points or dollar value points 
ffj based upon the volume of purchases made using the particular financial 

fM instrument. These types of programs may be designed such that customers of the 

13 financial institution accumulate reward points which can be redeemed for selected 

1 u goods or services or, alternatively, such that customers accumulate points which 

have a dollar value which can be applied toward a credit or debit balance, 
depending on whether the instrument is a credit or debit instrument, for example. 
[00051 These and other similar incentive award programs are described in U.S. 

Patent Nos. 5,774,870 and 6,009,412, issued to Thomas W. Storey and assigned 
to Netcentives, Inc., both of which are hereby incorporated by reference to the 
extent that they describe an automated rewards system. For more information on 
loyalty systems, transaction systems, electronic commerce systems, and digital 
wallet systems, see, for example, the Shop AMEX™ system as disclosed in Serial 
No. 60/230,190 filed September 5, 2000; the MR as Currency™ and Loyalty 
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Rewards Systems as disclosed in Serial No. 60/197,296 filed on April 14, 2000, 
Serial No. 60/200,492 filed April 28, 2000, and Serial No. 60/201,114 filed May 2, 
2000; a digital wallet system as disclosed in U.S. Serial No. 09/652,899 filed 
August 31, 2000; a stored value card as disclosed in Serial No. 09/241,188 filed on 
February 1, 1999; a system for facilitating transactions using secondary transaction 
numbers as disclosed in Serial No. 09/800,461 filed on March 7, 2001; and also in 
related provisional applications Serial No. 60/187,620 filed March 7, 2000, Serial 
No. 60/200,625 filed April 28, 2000, and Serial No. 60/213,323 filed May 22, 2000, 
all of which are herein incorporated by reference. Other examples of online 
membership reward systems are disclosed in U.S. Patent No. 5,774,870, issued on 
June 30, 1998, and U.S. Patent No. 6,009,412, issued on December 29, 1999, 
both of which are hereby incorporated by reference. A further example of a loyalty 
and reward program may be found at the AIR MILES® Web site (www.airmiles.ca), 
which describes a loyalty program offered by The Loyalty Group, a privately held 
division of Alliance Data Systems of Dallas, Texas, and which is hereby 
incorporated by reference. Additional information relating to smart card and smart 
card reader payment technology is disclosed in Serial No. 60/232,040, filed on 
September 12, 2000, and U.S. Patent Nos. 5,742,845; 5,898,838 and 5,905,908, 
owned by Datascape; all of which are hereby incorporated by reference. 
Information on point-of-sale systems and the exploitation of point-of-sale data is 
disclosed in U.S. Patent No. 5,832,457, issued on November 3, 1998 to O'Brien et 
al., which is hereby incorporated by reference. 
mOQ61 Portions of each of the above-described programs may be used to induce 

customer loyalty to particular merchants or service providers who directly provide 
goods or services to the consumer. In other words, these prior art frequency 
awards programs provide a means for retail businesses, financial institutions, and 
others in direct contact with the customers they service to provide incentives to 
their customers to encourage repeat and/or volume business. However, these 
programs do not sufficiently address the similar needs of businesses that are 
further up in the distribution chain, such as manufacturers, to promote volume 
purchases by customers based upon, for example, brand loyalty independent of 
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the retail source for the purchase. Additionally, the prior art programs do not 
provide a means for monitoring, tracking, and/or analyzing consumer and product 
data across distribution channels for a particular manufacturer and/or the variety of 
goods which that manufacturer places into the stream of commerce for ultimate 
sale to consumers by a retailer. 
roQQ7i Generally, before a product arrives at a retail establishment for sale to a 

consumer, the product travels through a distribution chain which originates with the 
manufacturer. The manufacturer typically sells its products to a wholesaler who in 
turn sells those products to various retailers. Most modern retailers implement 
some form of computerization or electronic technology in their day-to-day 
operations. This technology typically consists of using point-of-sale (POS) systems 
for automating checkout procedures, assisting sales personnel, and the like. POS 
systems generally include one or more automated check-out terminals which are 
St capable of inputting or sensing and interpreting a symbol or other indicia related to 

the product, such as a Universal Product Code (UPC), generally comprising a 
machine-readable bar code coupled with a human-readable UPC number, that is 
printed on a label or tag which is placed on each item of merchandise to be 
purchased. The manufacturer may assign and mark each product that it sells with 
a UPC. Conventionally, once the product reaches the retailer, the retailer further 
i| identifies each product with a Stock Keeping Unit (SKU) number or code as well as 

other information for identifying a specific item or style of merchandise. The 
retailer's SKU number may be either an entirely different number used to identify 
each product {e.g., by style) or a modified version of the manufacturer's UPC 
number, derived, perhaps, by adding a SKU number to the UPC number for 
example. 

roQQ81 A POS terminal, a kiosk terminal, or a sales person's hand-held terminal 

might be coupled to a store computer system, such as a network server or some 
other store platform host, which is able to recognize and process UPC and/or SKU 
information which has been manually keyed-in or sensed and interpreted by a 
device, such as a barcode reader, coupled to the terminal. The computer system 
typically includes a database which stores information relating to the retailer's 
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product inventory, such as stocked merchandise, a UPC and/or SKU number for 
each item of merchandise, and various types of merchandise identification 
information, such as price, inventory, style, color, size, etc., which is associated 
with each UPC and/or SKU number. When a customer purchases an item of 
merchandise, store personnel frequently use an automated terminal to read the 
barcode markings which are attached to the item. A computer interprets the UPC 
and/or SKU number comprised by the barcode, accesses the database to 
determine the price for each item, and maintains a running total of the total 
transaction price. 

[00091 One problem that results from the independent identification schemes of 

the manufacturer and the retailers is that there is no way for the manufacturer to 
track the quantity of any particular product that each retailer sold. For example, 
even if a manufacturer obtains all of the SKU numbers representing items 
jjjj purchased from Retailer 1 and Retailer 2 by consumers, the manufacturer has no 

'J means for determining which SKU number corresponds to the manufacturer's 

%| UPC, since the UPC's and SKU numbers of the various retailers are not tracked 

J. and matched. 

f00101 In view of the foregoing, a need exists for an incentive or loyalty program 

|jj which overcomes the shortcomings of the prior art. Thus, there is a need for a 

] J system and method which provides a universal customer incentive program that 

O networks various levels of the product distribution chain, such as manufacturers, 

wholesalers, and retailers, to provide incentives to consumers to purchase 
products not only from a particular merchant or group of merchants but also from 
particular manufacturers, regardless of the specific merchant who sells the 
manufacturer's products to the consumer. Additionally, a need exists for a system 
and method for gathering data which associates particular consumer purchasing 
behaviors and specific products or product criteria across a manufacturer's 
distribution channels. 

[0011] Consumers may utilize computing devices to assist in the purchase and/or 

loyalty process, and in particular, the consumer may utilize a PDA to facilitate the 
purchase and/or loyalty process. A PDA (personal digital assistant) includes any 
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mobile hand-held device that provides computing, information storage and/or 
retrieval capabilities for personal or business use, often for keeping schedule 
calendars, note-entering and address book information. PDA products include, for 
example, the Hewlett-Packard's Palmtop and 3Com's PalmPilot (www.palm.com), 
the details of which are hereby incorporated by reference. An increasing number 
of software and hardware applications have been written or developed for PDAs, 
including the combination of PDAs with telephones and paging systems. The 
PDAs were originally used in a disconnected fashion, functioning as a stand-alone 
personal computer, but the devices can now be connected to the internet for the 
purposes of browsing content. 
rooi21 A PDA portal includes a method for collecting specific information of 

interest to a particular user and making it available for use on their device. The 
updating activity is typically executed when the device is connected to a network 
3 and "synchronized". Since there is a staggering amount of content available on the 

l l network, tho us e r users typically id e ntifi e s j dentify. which content they want 

y refreshed each time. The PDA portal offers "channels" to the users that embody 

J specific content available from various content providers, such as the Wall Street 

* Journal, the New York Times, or MSN. Typically, the content from these channels 

Q| that is available for access is general, public information. In other words, very little 

if content that is specific to an individual is available for access. Although the 

general information has value, it is minimal when compared to the opportunity for 
placing personal information on the user's PDA. Examples of personal content that 
may be desired is their monthly account statement, a travel itinerary, or an 
investment portfolio and its statement. This is information that could be of use to 
customers in the disconnected manner that is offered by PDAs. Moreover, 
inte grating public an d private data into on e source mav be valuable, such as. 
for example, the system disclosed in U.S. Serial No. 09/893.391 entitled 
SYSTEM AND METHOD FOR INTEGRATING PUBLIC AND PRIV ATE DATA, filed 
on June 28. 2001 bv inventors Mitchell, et al.. the entire conte nts of which is 
hereby incorporated by reference. 
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f00131 After a user has selected the content channels he wants to be placed onto 

his device, each time the user synchs his device, this content will be collected from 
the corresponding locations, assembled and placed onto the device. Since not all 
content will fit on a single page, the portal will typically interrogate the page looking 
for links to additional content pages. If present, additional content requests are 
made of the content source. Once collected, the content is assembled and stored 
on the connected PDA device. 
[0014] Currently, the PDA portals do not offer secured personal content. If they 

do offer personal data, it is either not confidential (like addresses and directions) or 
available in a clear and unsecured state. A problem with using this method for 
secure content is that it is visible throughout the process. If the content includes 
account numbers, they may be exposed, and could be stolen and improperJy used. 
The fundamental problem is often distributing personal content that must be 
3 secured into an unsecure environment. PDAs are inherently not secure. Being 

2 small and self-contained (to enable disconnected operation), they are easily lost or 

\ 5 stolen and downloading confidential content (such as account numbers or their 

balances) on the PDA that can be easily accessed by anyone other than the user is 
L unacceptable by many . 

OS rooi51 In a connected environment, the conventional wisdom is to use end to end 

security using the standard protocols (SSL) to secure the content between its 
source and its use. When its use is complete, the content is usually gone, as it is 
not stored on the PC. A disconnected environment is different in that the content is 
usually stored on the device for use when the device has been removed from the 
network. The definition of end to end security must therefore change to 
accommodate this difference, such that the content be secured once it leaves its 
source until the user has been properly authenticated on the device. 
r0016l Portals usually serve as a middle layer between the user and the content 

source. Traditional security measures work between the client and the source, but 
when a middle layer is added to the environment, there is a period when the 
content is exposed, when it is decrypted on the portal from the source and before it 
is encrypted for delivery to the users client. There is known security hardware that 
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can be used for internet sites to insure the content is always secured. One of the 
difficulties of using this technology is that the portal still needs to be aware of the 
links that are present in the content to collect all the content of the channel. 
r00171 Since most of the content currently being placed onto these devices is 

general, the process being used to collect the content from the different channels 
and prepare it for the device does not need to be secure. But, since the content 
must be interrogated to determine any links that must be traversed to collect all the 
applicable data, the content is kept in an unsecured state at the PDA portal or the 
PDA . Once the content has been prepared, it is moved to and placed onto the 
PDA as it is, unsecured. The process must therefore be amended to insure the 
content is secure in how it is collected, assembled and delivered to the PDA 
device. 

SUMMARY 



S| Summary of the Invention 

t r00181 Consumers may utilize computing devices to assist in the purchase and/or 

loyalty process, and in particular, the consumer may utilize a PDA to facilitate the 
m purchase and/or loyalty process. During the purchase and/or loyalty process, the 

! y consumer may need to insure that any content downloaded or used in association 

P with the PDA is secure in how it is collected, assembled and delivered to the PDA 

m 

device. This system and method secures the data from its source to when it is 
actually viewed/used by the authorized user. The PDA may have direct access to 
an Internet web site portal that offers secure personal content from a content 
provider, such as, for example, an on-line banking or financial institution. Using the 
web site portal, the content provider may offer personal or confidential data, such 
as financial information, to PDA users in a secure (e.g., encrypted) environment. 
The exemplary system and method may establish a PDA portal link to the web site 
for collecting specified information for a user and transmitting the information to the 
remote device. To receive the information, the PDA contacts the portal and 
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establishes a connection, authenticates itself to the network and allows the user to 
complete secured transactions or transmissions over the network. 
fQ0i91 More particularly, the method for securing at least a portion of content from 

a source to a PDA includes, for example, synchronizing saida PDA to a PDA portal; 
transmitting a signal to saidthe PDA portal, wherein saidthe signal represents 
content to be at least one of refreshed and downloaded to saidthe PDA; providing 
identification signals from saidtM PDA to saidthe PDA portal, wherein saidibj 
PDA portal is configured to interrogate sources containing saida portion of said 
content to determine if secure content is included in saida portion of saidthe 
content, connect to a hardware encryption device which is configured to isolate 
imbedded links, receive encrypted content from saidthe hardware encryption 
device, and transmit encrypted content to saidthe PDA via the PDA portal: 
receiving saidtM encrypted content from saidthe PDA portal; storing saidthe 
encrypted content in encrypted form; and, receiving a pass-phrase from saidthe 
user to authenticate saidthe user and decrypt saidthe content. 

BRIEF DESCRIPTION OF EXEMPLARY DRAWINGS 

Brief Description of the Drawings 
f00201 Additional aspects of the present invention will become evident upon 

reviewing the non-limiting embodiments described in the specification and the 

claims, in conjunction with the accompanying figures, wherein like numerals 

designate like elements, and wherein: 
r00211 FIG. 1 is a sch o matic b l ock diagram illustrating an exemplary PDA porta l 

rnr| i r;trntinn prnnftF.y, nnri embodiment of an incen t ive or lovaltv system in 

accordance with various aspects of the present invention; 
r00221 FIG. 2 is a schomat i c block diagram illustrating an exemplary process 

an dembodiment of an incentive or lovaltv system for o stabl i sh i ng a s e ssion for 

soouro content using a PDA portal in accordance with various aspects of the 

present invention; 
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[00231 FIG. 3 is a sch e matic block diagram illustrating an exemplary proc e ss 

aw tembodiment of an incentive or lovaltv system for registration and 
establishing a s e ss i on for s e cure content us i ng a PDA portal in accordance with 
various aspects of the present invention; 

[0024] FIG. 4 is a schemat i c block diagram illustrating syst e ms and proc e sses 

fefgn exemplary nhnnnn l i i print n r , uRina embodiment of a PDA portal central 
rewards mechanism in accordance with various aspects of the present invention; 

rpQ251 FIG. 5 is a process flow diaaram illustrating an exemplary system and 

P^r-noc- fnr onppnrt i nr; r .n rur n onnt n .nt ur.inq embodiment of a PDA rewards 
parta lserver in accordance with various aspects of the present invention;-an4r 

rpQ261 FIG. 6 is a prnnnnr, flow flowchart illustrating an anetheFexemplary syst e m 

an4-process for s u pporting seeure mnt n nt uoinq n PDA pnrtal capturin g and 
j processin g POS SKU data in accordance with various aspects of the present 

I invention^ 

i 

DETAILED DESCRIPTION OF EXEMPLARY EMBODIMENTS 

iff: 

| r00271 FIG. 7 is a flowchart illustrating an exemplar y process for associating 

information in accordance with variou s aspects of the present invention: 
r00281 FIG. 8 is a schematic block diagra m illustrating an exemplary PDA 

portal registration process and system in accordance with various aspects of 
the present invention: 
[00291 FIG. 9 is a schematic block diag ram illus trating an e xemplary process 

and system for establishing a session for se cure content using a PDA portal 
in accordance with various asp ects of the present invention: 
rOQ301 FIG. 10 is a schematic block dia gram illustrating an exemplary 

process and system for registratio n and establishing a session for secure 
content using a PDA portal in accordance wi th various aspects of the present 
invention: and 

r0Q311 FIG. 11 is a schematic block diagram illustrating systems and 

processes for exem plar y PDA updates u sin g a PDA portal in accordance with 
various aspects of the present invention. 
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Detailed Description 

\Q0Z2] The following disclosure presents and describes various exemplary 

embodiments in sufficient detail to enable those skilled in the art to practice the 
invention, and it should be understood that other embodiments may be realized 
without departing from the spirit and scope of the invention. Thus, the following 
detailed description is presented for purposes of illustration only, and not of 
limitation, and the scope of the invention is defined solely by the appended claims. 
rpQ33i The present invention may be described herein in terms of functional block 

components and various processing steps. It should be appreciated that such 
functional blocks may be realized by any number of hardware and/or software 
components configured to perform the specified functions. For example, the 
present invention may employ various integrated circuit components, e.g., memory 
elements, processing elements, logic elements, look-up tables, and the like, which 
may carry out a variety of functions under the control of one or more 
microprocessors or other control devices. Similarly, the software elements of the 
present invention may be implemented with any programming or scripting language 
such as C, C++, Java, COBOL, assembler, PERL, or the like, with the various 
% algorithms being implemented with any combination of data structures, objects, 

processes, routines, or other programming elements. Further, it should be noted 
that the present invention may employ any number of conventional techniques for 
data transmission, signaling, data processing, network control, and the like. For a 
basic introduction to cryptography, please review a text written by Bruce Schneider 
which is entitled "Applied Cryptography: Protocols, Algorithms, And Source Code 
In C T " 4 published by John Wiley & Sons (second edition, 1996), which is hereby 
incorporated by reference. 
roo34i it should be appreciated that the particular implementations shown and 

described herein are illustrative of the invention and its best mode and are not 
intended to otherwise limit the scope of the present invention in any way. 
Furthermore, the connecting lines shown in the various figures contained herein 
are intended to represent exemplary functional relationships and/or physical 
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couplings between the various elements. It should be noted that many alternative 
or additional functional relationships or physical connections may be present in a 
practical incentive system implemented in accordance with the invention. 

Communication between participants in the system of the present 
invention is accomplished through any suitable communication means, such as, for 
example, a telephone network, public switch telephone network, intranet, Internet, 
extranet, WAN, LAN, point of interaction device {e.g., point of sale device, personal 
digital assistant, cellular phone, kiosk terminal, automated teller machine (ATM), 
etc.), online communications, off-line communications, wireless communications, 
satellite communications, and/or the like. One skilled in the art will also appreciate 
that, for security reasons, any databases, systems, or components of the present 
invention may consist of any combination of databases or components at a single 
5J location or at multiple locations, wherein each database or system includes any of 

Cj various suitable security features, such as firewalls, access codes, encryption, de- 

'% encryption, compression, decompression, and/or the like. 

lj r00361 It further will be appreciated that users may interact with the system via 

J any input device such as a keyboard, mouse, kiosk, personal digital assistant, 

handheld computer (e.g., Palm Pilot®), cellular phone, and/or the like. Similarly, 
the invention could be used in conjunction with any type of personal computer, 
network computer, workstation, minicomputer, mainframe, or the like, running any 
operating system, such as any version of Windows, Windows NT, Windows 2000, 
Windows 98, Windows 95, MacOS, OS/2, BeOS, Linux, UNIX, or the like. 
Moreover, although the invention may be described herein as being implemented 
with TCP/IP communications protocols, it will be readily understood that the 
invention could also be implemented using IPX, Appletalk, IP-6, NetBIOS, OSI, or 
any number of existing or future protocols. Moreover, the system contemplates the 
use, sale, or distribution of any goods, services, or information over any network 
having similar functionality described herein. 
f00371 Each participant or user of the system of the present invention, including 

purchasers, retailers, manufacturers, and a third-party providers, may be equipped 
with a suitable computing system to facilitate online communications and 
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transactions with any other participant. For example, some or all participants may 
have access to a computing unit in the form of a personal computer, although other 
types of computing units may be used, including laptops, notebooks, handheld 
computers, set-top boxes, kiosk terminals, and the like. Additionally, other 
participants may have computing systems which may be implemented in the form 
of a computer-server, a PC server, a networked set of computers, or any other 
suitable implementations which are known in the art or may hereafter be devised. 
[00381 The computing systems may be connected with each other via a data 

communications network as described more fully above. For example, the network 
may be a public network, which is assumed to be insecure and open to 
eavesdroppers. In one embodiment, the network is embodied as the Internet. In 
this context, the computers may or may not be connected to the Internet at all 
times. For instance, the consumer's computer may employ a modem to 
occasionally connect to the Internet, whereas the retailer computing system, the 
manufacturer computing system, and the central rewards mechanism might 
maintain a permanent connection to the Internet. It is noted that the network may 
$ be implemented as other types of networks, such as an interactive television (ITV) 

network. 

f0039] The retailer's computer system may also be interconnected to a third-party 

provider via a second network, referred to as a payment network. The payment 
network represents existing proprietary networks that presently accommodate 
transactions for credit cards, debit cards, and other types of financial instruments or 
banking cards. The payment network is a closed network that is assumed to be 
secure from eavesdroppers. Examples of the payment network include the 
American Express®, VisaNet®, and the Veriphone® networks. 
roQ401 As will be appreciated by one of ordinary skill in the art, the present 

invention may be embodied as a method, a data processing system, a device for 
data processing, and/or a computer program product. Accordingly, aspects of the 
present invention may take the form of an entirely software embodiment, an 
entirely hardware embodiment, or an embodiment combining aspects of both 
software and hardware. Furthermore, the present invention may take the form of a 
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computer program product on a computer-readable storage medium having 
computer-readable program code means embodied in the storage medium. Any 
suitable computer-readable storage medium may be utilized, including hard disks, 
CD-ROM, optical storage devices, magnetic storage devices, and/or the like. 
roo4H The present invention is described below with reference to block diagrams 

and flowchart illustrations of methods, apparatus (e.g., systems), and computer 
program products according to various aspects of the invention. It will be 
understood that each functional block of the block diagrams and the flowchart 
illustrations, and combinations of functional blocks in the block diagrams and 
flowchart illustrations, respectively, can be implemented by computer program 
instructions. These computer program instructions may be loaded onto a general 
purpose computer, special purpose computer, or other programmable data 
processing apparatus to produce a machine, such that the instructions which 
execute on the computer or other programmable data processing apparatus create 
means for implementing the functions specified in the flowchart block or blocks. 

roQ421 These computer program instructions may also be stored in a computer- 

readable memory that can direct a computer or other programmable data 
processing apparatus to function in a particular manner, such that the instructions 
stored in the computer-readable memory produce an article of manufacture 
including instruction means which implement the function specified in the flowchart 
block or blocks. The computer program instructions may also be loaded onto a 
computer or other programmable data processing apparatus to cause a series of 
operational steps to be performed on the computer or other programmable 
apparatus to produce a computer-implemented process such that the instructions 
which execute on the computer or other programmable apparatus provide steps for 
implementing the functions specified in the flowchart block or blocks. 

f0043l Accordingly, functional blocks of the block diagrams and flowchart 

illustrations support combinations of means for performing the specified functions, 
combinations of steps for performing the specified functions, and program 
instruction means for performing the specified functions. It will also be understood 
that each functional block of the block diagrams and flowchart illustrations, and 
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combinations of functional blocks in the block diagrams and flowchart illustrations, 
can be implemented by either special purpose, hardware-based computer systems 
which perform the specified functions or steps, or suitable combinations of special 
purpose hardware and computer instructions. 
rpQ44i As used herein, the terms "user" and "participant" shall interchangeably 

refer to any person, entity, charitable organization, machine, hardware, software, or 
business who accesses and uses the system of the invention, including 
consumers, retailers, manufacturers, and third-party providers. Participants in the 
system may interact with one another either online or off-line. As used herein, the 
term "online" refers to interactive communications that takes place between 
participants who are remotely located from one another, including communication 
through any of the networks or communications means described above or the like, 
j r00451 The term "manufacturer" shall include any person, entity, charitable 

1 organization, machine, software, hardware, and/or the like that manufactures, 
| distributes, or originates a product or service which may ultimately be offered to a 

2 consumer directly or indirectly through a retailer. The term "manufacturer" may 

IS 

| also include any party that generates and/or provides manufacturer item identifiers. 

m The term "retailer" shall include any person, entity, charitable organization, 

% machine, software, hardware, and/or the like that that offers a product or service to 

il a consumer. As used herein, the term "retailer" is used interchangeably with the 

i| term "merchant". Moreover, in this context, a retailer or merchant may offer or sell, 

either online or offline, products and/or services made or supplied by at least one 
manufacturer. As used herein, the phrases "network level" and "network-wide 
level" shall refer to a system that includes more than one retailer and at least one 
manufacturer. 

roQ461 As used herein, the terms "purchaser", "customer", "consumer", and "end- 

user" may be used interchangeably with each other, and each shall mean any 
person, entity, charitable organization, or business which uses a consumer ID to 
participate in the present system. A "consumer ID", as used herein, includes any 
device, code, or other identifier suitably configured to allow the consumer to 
interact or communicate with the system, such as, for example, a rewards card, 
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charge card, credit card, debit card, prepaid card, telephone card, smart card, 
magnetic stripe card, bar code card, authorization/access code, personal 
identification number (PIN), Internet code, other identification code, and/or the like. 
Additionally, a "consumer ID" may comprise any form of electronic, magnetic, 
and/or optical device capable of transmitting or downloading data from itself to a 
second device which is capable of interacting and communicating with such forms 
of consumer ID. 

roQ47i A consumer may register to participate in the present system by any 

methods known and practiced in the art. For example, a consumer may be 
enrolled automatically (e.g. if the consumer holds an existing account with the 
system administrator), over the phone, at the point of sale through a paper 
application or verbal interview, through the mail, or through instant enrollment 
S online Consumer enrollment data may comprise any of the following: name; 

S address; date of birth; social security number; email address; gender; the names of 

% any household members; a credit card number for charging any fees that may be 

1 associated with participation in the system; survey data; interests; educational 

J level; and/or any preferred brand names. Upon enrollment, the consumer receives 

a consumer ID. The consumer ID may be associated with a household account 
which specifies the consumer as a primary member and permits the identification 
fl of supplementary members associated with the consumer's household who may 

|| also earn reward points for the consumer. 

r00481 A "consumer profile", as used herein, shall refer to any data used to 

characterize a consumer and/or the behavior of a consumer. In the context of a 
commercial transaction, "a consumer profile" shall be understood to include, for 
example, the time and date of a particular purchase, the frequency of purchases, 
the volume/quantity of purchases, the transaction size (price), and/or the like. 
Additionally, in other transactional contexts, the term "consumer profile" shall also 
be understood to include non-purchase behaviors of a consumer, such as 
consumer enrollment data, visiting a Web site, referrals of prospective participants 
in the system, completion of a survey or other information gathering instrument, 
and/or the like. For instance, a participating online consumer may earn rewards 
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points automatically through a triggering event, such as visiting a Web site, 
completing an online survey, or clicking on a banner advertisement for example. 
Offline, a participating consumer may earn rewards points by completing a task or 
showing their consumer ID to the cashier and triggering the cashier to provide a 
"behavior" ID which may be input (e.g., by scanning a bar code on a paper survey 
for example) into the POS terminal. Further, any aspects of the consumer profile 
may be used in the context of data analysis. 
roo491 A "third-party provider" may comprise any additional provider of goods 

and/or services to a consumer. Specifically, a "third-party provider" includes any 
party other than the particular manufacturer and retailer who is involved in a 
transaction with a consumer. A third-party provider may include, for example, a 
financial institution, such as a bank or an issuer of a financial instrument (such as a 
credit card or a debit card). A third-party provider may also include a provider of 
1 goods and services which are offered as awards to consumers in exchange for a 

| requisite number of reward points. 

[00501 Though the invention may generically be described with reference to a 

| series of transactions which transfer a good or service from an originating party to 

' an intermediary party and a subsequent transaction which transfers the good or 

I service from the intermediary party to an end-user of that good or service, for 

convenience and purposes of brevity and consistency, the present disclosure 
generally refers to the originating party as a manufacturer, the intermediary party 
as a retailer, the end-user as a consumer, and a good or service as a product or 
item. However, it will be recognized by those of ordinary skill in the art that the 
retailer need not provide a product or item to a consumer in exchange for monetary 
currency. While this often may be the case, the present disclosure is not so limited 
and includes transactions which may be gratuitous in nature, whereby the retailer 
transfers a product or item to a consumer without the consumer providing any 
currency or other value in exchange. It is further noted that additional participants, 
referred to as third-party providers, may be involved in some phases of the 
transaction, though these participants are not shown. Exemplary third-party 
providers may include financial institutions, such as banks, credit card companies, 
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card sponsoring companies, or issuers of credit who may be under contract with 
financial institutions. It will be appreciated that any number of consumers, retailers, 
manufacturers, third-party providers, and the like may participate in the system of 
the present invention. 

roosn As used herein, the term "UPC" and the phrase "manufacturer item 

identifier" shall refer to any symbol or indicia which provides information and, in an 
exemplary embodiment, shall refer to any number, code, or identifier assigned by a 
manufacturer and associated with an item, including any type of goods and/or 
services, ultimately offered to a consumer or other end-user. Colloquially, a UPC is 
sometimes referred to as a SKU number. However, as used herein, the term 
"SKU" and the phrase "retailer item identifier" shall refer to any symbol or indicia 
which provides additional information and, in an exemplary embodiment, shall refer 
to any number, code, or identifier assigned by a retailer and associated with an 
3 item, including any type of goods and/or services, offered to a consumer or other 

j* end-user. 

!S f00521 "Purchase data", as used herein, comprises data relating to the offer of 

:! | any item to a consumer or other end-user. Purchase data may include any of the 

L following: an item purchased, an item price, a number of items purchased, a total 

S transaction price, a payment vehicle, a date, a store identifier, an employee 

ry 

:T identifier, a retailer item identifier, a loyalty identifier, and/or the like. 

!| r00531 "Retailer ID", as used herein, comprises any symbol, indicia, code, 

number, or other identifier that may be associated with a retailer of any type of 
goods and/or services offered to a consumer or other end-user. A retailer ID may 
also include or be associated with a "store ID", which designates the location of a 
particular store. A "manufacturer ID" comprises any symbol, indicia, code, number, 
or other identifier that may be associated with a manufacturer of any type of goods 
, and/or services ultimately offered to a consumer or other end-user. 
F00541 An "award" or "reward" may comprise any quantity of products, services, 

coupons, gift certificates, rebates, reward points, bonus points, credits or debits to 
a financial instrument, any combination of these, and/or the like. 
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[00551 "Data analysis", as used herein, shall be understood to comprise 

quantitative and qualitative research, statistical modeling, regression analyses, 
market segmentation analyses, econometrics, and/or the like. Such analyses may 
be used to predict consumer behaviors and/or correlate consumer profiles, retailer 
data, manufacturer data, and/or product or service data. 
[0056] Tne system of the present invention associates or maps manufacturer 

UPC data and retailer SKU data on a network level to reward consumers and/or to 
analyze the data for a variety of business purposes, such as market segmentation 
analyses and/or analyses relating to consumer spending behaviors or patterns for 
example. Rather than simply capturing transactions at a Record of Charge (ROC) 
level, that is, recording consumer purchases in a general fashion by designating 
purchase categories (such as "clothing", "electronics", or "hardware" for example), 
the system identifies the particular item purchased (such as "jeans", "stereo", or 
"hammer" for example) as well as its corresponding manufacturer. By matching or 
I associating the retailer SKU and the manufacturer's UPC, the system permits the 

^ standardization of goods and/or services codes at the network level. This 

1 standardization not only permits a record of both the specific item purchased and 

U its manufacturer, regardless of the particular retailer involved in the transaction, but 

3 it permits the mapping of multiple consumers, multiple goods and/or services, 

ij multiple retailers, and/or multiple manufacturers to advantageously cross-market 

goods and services to consumers. 
00571 In accordance with one aspect of the invention, the association of UPC 

and SKU data by the system facilitates implementation of an incentive or loyalty 
program by providing a universal rewards currency which may be "spent" by 
participants who have earned rewards and accepted by the other participants in the 
multi-tiered network created by the system. The network may comprise any 
number of participants, including consumers, retailers (and any of their 
employees), manufacturers, third-party providers, and the like. Each of these 
categories of participants may be considered a tier in the network, and each 
participant within the various tiers may design and implement an independent 
rewards scheme within the context of the universal environment provided by the 
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system. For example, Manufacturer 1 may produce and assign a UPC to Item X. 
Item X may subsequently be offered for sale by both Retailer 1 and Retailer 2. 
Retailer 1 and Retailer 2 may then each assign an independent SKU number to 
Item X to facilitate their own tracking, inventory, and pricing schemes. A consumer 
may then purchase Item X from both Retailer 1 and Retailer 2. 
rop581 Since the system is capable of processing, associating, and quantifying a 

variety of data, including consumer data, employee data, retailer data, 
manufacturer data, SKU number data corresponding to Item X, and UPC data 
assigned by Manufacturer 1, for example, this data can then be used by the 
manufacturer, the retailer, the system administrator, and/or a third-party provider to 
provide rewards to consumers, employees, retailers, etc. For example, a 
manufacturer may provide frequency-based incentives, such as every 10 th 
J purchase of a particular item will be discounted by 50% for example, independent 

| of and/or in addition to any incentives offered by the specific retailer involved in the 

| transaction. Additionally, the manufacturer may provide sales incentives to the 

"1 employees of retailers independent of and/or in addition to any employee incentive 

I*' 

p programs that the retailers may choose to implement. 

% rOQ591 Since rewards, which may be in the form of rewards points, may be earned 

across the various tiers in the network, rewards may also be used or spent across 
the various tiers in the network. Thus, any rewards points that an employee, for 
example, may earn by promoting a particular manufacturer's line of products, may 
be "spent" by that employee on goods or services provided by any participant in the 
network, not merely at the retailer who employs that employee. Likewise, any 
rewards points earned by a consumer may be spent on goods or services offered 
by any participant in the network. 
roQ601 In accordance with another aspect of the invention, the association of UPC 

and SKU data by the system facilitates data analysis on a network level based 
upon several factors, including any of the following: consumer ID, consumer 
profile, retailer ID, SKU number, UPC, manufacturer ID, and/or the like. The 
system may compile any of the above data across multiple participants for the 
purpose of data analysis, such as analyses which may be employed in strategic 
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planning and marketing for example. The system of the invention may be used to 
compile, analyze, and report data in a manner which would inform any or all 
network participants that, for example, a specific consumer (1) has made multiple 
purchases of particular manufacturers' products; (2) has spent Q dollars over a 
certain time period (3) at specific multiple retailers; and (4) of the purchases made, 
R dollars went towards the purchase of Product 1 , S dollars went towards the 
purchase of Product 2, and T dollars went towards the purchase of Service 1. 
Moreover, the system may be used to compile, analyze, and report data that 
enable a retailer, a manufacturer, and/or a third-party provider to create a variety of 
targeted marketing promotions, such as, for example, (1) marketing Product 1 
offered by Manufacturer 1 to consumers who purchase Product 2 offered by 
Manufacturer 2; (2) marketing Product 1 offered by Manufacturer 1 and sold by 

^ Retailer X to consumers who purchase Product 2 offered by Manufacturer 2 at 

a 

if Retailer Y; (3) marketing Product 1 offered by Manufacturer 1 and sold by Retailer 

| X to consumers who purchase Product 2 offered by Manufacturer 2 at Retailer Y 

five times a year. It will be appreciated that these are but a few of the many 
| possible applications for data gathered and generated by the system of the present 

m invention. 

A f 00611 In accordance with a further aspect of the invention, the system 

t| administrator may allocate rewards points to participants in the system. In one 

|J embodiment, participating retailers and/or manufacturers may purchase points from 

the system administrator and the points are then allocated to an account 
associated with the retailer and/or manufacturer. In an alternate embodiment, the 
system administrator may give or donate points to participating retailers and/or 
manufacturers. The system administrator maintains an account with each of the 
participating retailers and manufacturers and tracks available points balances 
and/or balances owing on a rolling basis. The points purchased by the retailers 
and/or manufacturers may then be earned by and issued to consumers in a 
manner that is predetermined by the retailer and/or manufacturer involved in the 
transaction with the consumer. For example, Retailer 1 may purchase 10,000 
points from the system administrator and then offer consumers 1 point for every 
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$10 dollars spent in Retailer 1's store or, perhaps, some number of points for every 
fifth transaction in the store. Moreover, Manufacturer 1, who produces the product 
offered by Retailer 1, may also purchase points from the system administrator. 
Thus, when a consumer purchases Manufacturer 1's product at Retailer 1, 
Manufacturer 1 may issue some number of points to the consumer. The issuance 
of points, either by retailers or manufacturers, may be based upon any selected 
criteria, including a points-for-dollars ratio, a defined quantity of points per item or 
per transaction, some combination of these, and/or the like. 
rOQ621 The system administrator maintains an account for each participating 

consumer and apprises the consumer of the points totals and account activity. The 
consumer may review the total number of points in the account either online or off- 
line, such as through, a.. periodic statement sent by the system administrator or 
Jj through the use of a communications network, such as the Internet, for example. 

8 Points in the consumer's account are accumulated across the multiple retailers 

m 

J and/or manufacturers participating in the system. Thus, points earned by a 

consumer based upon transactions with different retailers and/or manufacturers are 
J combined, resulting in a rapid accrual of points. The system administrator offers a 

m catalog of products and services, which may be either online or off-line, from which 

Eft consumers may select rewards in exchange for accrued points. In this manner, 

yj consumers advantageously earn points based upon their everyday purchases of 

9 products and services, these points are accrued across retailers and/or 
manufacturers, and points redemption takes place through a single, universal 
catalog of rewards. 

r00631 In accordance with the present invention, FIG. 1 is a diagram illustrating an 

exemplary embodiment of an incentive or loyalty system 100. System 100 
comprises a central rewards mechanism 102; a plurality of retailer/merchant 
systems 104; and at least one manufacturer 106. One skilled in the art will 
appreciate that system 100 may comprise any number of retailer systems 104 and 
any number of manufacturers 106. 

r00641 The central rewards mechanism 102 manages the incentive or loyalty 

program of the system 100. In an exemplary embodiment, central rewards 
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mechanism 102 receives, processes, and stores manufacturer data, such as 
information regarding products and/or services and UPC data, transmitted by 
manufacturers 106 who have enrolled in the system 100. Manufacturers 106 may 
transmit data to central rewards mechanism 102 in any form and by any means 
known in the art, including any of the communications means described above. 
The manufacturer data is stored by the central rewards mechanism 102 in 
database 103. Database 103 may be any type of database, such as relational, 
hierarchical, object-oriented, and/or the like. Common database products that may 
be used to implement database 103 include DB2 by IBM (White Plains, NY), any of 
the database products available from Oracle Corporation (Redwood Shores, CA), 
Microsoft Access by Microsoft Corporation (Redmond, Washington), or any other 
database product. Database 103 may be organized in any suitable manner, 
including as data tables or lookup tables. 
S f00651 The central rewards mechanism 102 may receive and process consumer 

ID information and purchase data from any of the retailer systems 104. The central 
rewards mechanism 102 may also associate a particular consumer ID with the 
,| purchase data and a corresponding manufacturer item identifier. In one 

■L embodiment, the central rewards mechanism 102 performs an analysis involving 

j any of the following: a consumer ID, purchase data, a points ratio, a consumer 

il profile, a retailer ID, and a manufacturer ID. The analysis may be dependent upon 

an the association of the consumer IDs, the purchase data, and the manufacturer 
item identifier. The analysis may further comprise, for example, a calculation of 
rewards points and/or other analyses for purposes of market segmentation, 
determining consumer spending behavior, correlating spending behavior and 
consumer demographics, and/or the like, as described in greater detail above. 
[00661 In one exemplary embodiment, the central rewards mechanism 102 stores 

and informs a consumer of the rewards points that have been earned by a 
particular transaction as well as accumulated over time. The number of rewards 
points calculated and awarded by the central rewards mechanism 102 for a 
particular purchase may depend upon a predetermined rewards ratio. The rewards 
ratio may be determined by the retailer, the system administrator, the manufacturer 
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of the purchased item, and/or any other suitable third-party. For example, if a 
participating consumer buys a product from a retailer for $100 and if the retailer 
rewards ratio is one reward point for each dollar of the purchase price (i.e., one-for- 
one), once the consumer's consumer ID is identified by the system, the consumer 
is credited with a suitable number of rewards points from the retailer, which, in this 
case, would be 100 points. However, if the manufacturer also chooses to issue 
rewards points for the item purchased, the manufacturer may select a points ratio 
that is different from the retailer's selected ratio. In the illustrated example, if the 
manufacturer's selected points ratio is two-for-one, then the consumer will be 
awarded an additional 200 points from the manufacturer for this single $100 
purchase. In this manner, the system of the invention may provide "earn 
accelerators" through which consumers may accumulate rewards points at 
comparatively rapid rate. In other words, a single purchase may generate rewards 
ill points for a consumer from any or all of a retailer, a manufacturer, and/or a third- 

% party provider, and those rewards points may be used as rewards currency by the 

! | consumer throughout the network established by the system of the invention, 

ij [QQ671 In an exemplary embodiment, retailer system 104 comprises a retailer 

^ terminal 108 and a retailer processor 110 in communication with database 111. 

Retailer terminal 108 comprises any device capable of identifying a consumer ID. 
Exemplary devices for identifying a consumer ID may include a conventional card 

!i reader which recognizes a magnetic stripe or bar code associated with a consumer 

ill 

ID, a biometric device, a smart card reader which recognizes information stored on 
a microchip integrated with a consumer ID, and any device capable of receiving or 
uploading consumer ID data transmitted electronically, magnetically, optically, 
and/or the like. In one embodiment, retailer terminal 108 and retailer processor 
1 10 are co-located at a retail store. In another embodiment, retail terminal 108 and 
retailer processor 1 10 are remote from each other. 
rOQ681 In an exemplary embodiment, as illustrated in FIG. 2, retailer terminal 108 

comprises a retailer POS terminal 112, such as a cash register for example. When 
a consumer ID is used at the time an item is purchased, purchase data, including a 
SKU number, is input, sensed, or otherwise recognized by terminal 108, and then 
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the purchase data is processed and stored by retailer processor 110. Retailer 
processor 110 comprises or is in communication with a suitable database 111 or 
other storage device for maintaining and storing purchase data and any other 
suitable retailer information. Database 111 may be any type of database, such as 
any of the database products described above for example. Database 1 1 1 may be 
organized in any suitable manner, including as data tables or lookup tables. 
Purchase data that is stored in database 1 1 1 is available to the retailer's local back 
office system (not shown) for inventory, accounting, tax, data analysis, and other 
purposes. The captured purchase data may include the item purchased, the item's 
unit price, the number of items purchased, the date, the store location, an 
employee ID, and any other information related to the purchase. In an exemplary 
embodiment, retailer processor 110 may also receive, process, and store 
manufacturer data, such as information regarding products and/or services and 
l| UPC data, from manufacturers 106 who have enrolled in the system 100. The 

l| manufacturer data may be stored in any suitable form, including data tables or 

^ lookup tables. 

4p f00691 In accordance with the exemplary embodiments illustrated in FIG. 3, 

m purchase data may also be transmitted to and stored and processed by a retailer 

3 regional processor 114 (or, alternatively, a retailer national database (not shown)) 

in communication with database 115 for the purpose of further back office and 
cumulative data analysis. Database 115 may be any type of database, such as 
any of the database products described in greater detail above for example. 
Database 115 may be organized in any suitable manner, including as data tables 
or lookup tables. In an exemplary embodiment, retailer processor 110 optionally 
may be integrated with retailer regional processor 114 (illustrated by the phantom 
lines encompassing Retailer Processor 1 and retailer regional processor 1 14 within 
the system of Retailer/Merchant #2), thereby forming a single device. In another 
embodiment, retailer processor 110 and retailer regional processor 114 are 
separate devices which may be either co-located with each other or remotely 
located from one another. For example, in one embodiment, retailer processor 110 
and regional processor 114 are co-located at a particular retail store. In another 
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embodiment, retailer processor 110 is located at a particular retail store and retailer 
regional processor 1 14 is remotely located at a regional office. 
^00701 Regardless of the location of retailer regional processor 114, retailer 

regional processor 114 receives and processes similar information from each of the 
retailer processors 110 associated with each of the retail stores owned by the 
same retailer. Whether the system 100 comprises a retailer regional processor 
114 or a retailer national processor may be a function of the number of stores 
maintained by a particular retailer. That is, a larger retailer who has numerous 
stores throughout the country, for example, may choose to have a plurality of 
regional processors, while a smaller retailer with a few stores scattered across the 
country may be better served by a single, national processor. In exemplary 
embodiments, the retailer regional processors 114 and/or national processors 
communicate with a suitable database 115 or other storage device which is 
configured to store and maintain purchase data and any other suitable retailer 
information. In another exemplary embodiment, retailer regional processor 114 
may receive, process, and store manufacturer data, such as information regarding 
products and/or services and UPC data, from manufacturers 106 who have 
enrolled in the system 100. The manufacturer data may be stored in any suitable 
form, including data tables or lookup tables. 

With momentary reference to FIG. 2, retailer terminal 108 may comprise a 
rewards terminal 116 through which a consumer may be updated with regard to 
various aspects of the system. For example, rewards terminal 116 may inform a 
consumer of the number of reward points that they have accumulated from all 
system participants and the types of awards that may be obtained using those 
reward points. Moreover, rewards terminal 116 may suggest to the consumer 
various awards for which the consumer is eligible based upon the rewards points 
generated by the consumer's network-wide purchases. In this context, network- 
wide purchases include any purchases of items corresponding to retailers and/or 
manufacturers participating in the system 1 00. 
[00721 In an exemplary embodiment, rewards terminal 116 operates in real-time. 

In this context, "real-time" means that reward points are immediately, or nearly 
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immediately, updated at the time purchases are made and are therefore 
immediately redeemable by the consumer at the a point of sale. Thus, for 
example, a consumer may be informed by rewards terminal 1 16 at the point of sale 
that the item being purchased by the consumer may be purchased using the 
consumer's accumulated reward points, including points accumulated on a network 
level. Points accumulated on a network level enable consumers to accumulate 
points more rapidly than would be possible if only a single retailer or group of 
retailers were issuing the points. In one embodiment, rewards terminal 116 may 
update a consumer's rewards points in real-time and, in response to the 
consumer's particular points total, issue a coupon, a gift certificate, and/or 
additional bonus points to the consumer. 
[00731 In another exemplary embodiment, the system may operate in batch 

mode, wherein points totals are calculated, stored, and periodically updated for 
access by the retailer terminal 108, including POS terminal 112 and/or rewards 
terminal 116. Thus, in this embodiment, the consumer may be notified of available 
2 points sometime after a purchase, or a suggestive sale may take place after a 

purchase. The total point count or suggestive sale may take into account points 
generated and accumulated as the result of network-wide purchases. 
)74] In various alternate embodiments of the invention, retailer terminal 108 

may include a rewards terminal 116 but not a POS terminal 112; a POS terminal 
1 12 but not a rewards terminal 1 16; or a POS terminal 1 12 in communication with a 
rewards terminal 116. In alternate embodiments, where terminal 108 includes a 
POS terminal 112 and a rewards terminal 116, the two terminals 112 and 116 may 
be variously implemented as separate terminals, integrated terminals, or software 
within a device. In another embodiment, where terminal 108 comprises a rewards 
terminal 116 but not a POS terminal 112, terminal 108 may be a kiosk terminal 
located within a retail store or some other remote terminal which is capable of 
recognizing a consumer ID and communicating with the system 100. A consumer 
may use independent rewards terminal 116 to do, for example, any of the following: 
view accumulated reward points totals; view potential awards which the consumer 
may obtain in exchange for various numbers of points; select an award; redeem 
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rewards points for a selected award; request and/or receive a reward points 
advisory statement; and/or view a directory of participating retailers, manufacturers, 
and third-party providers. 
[0075] In another exemplary embodiment, system 100 further comprises a 

consumer terminal 118. Consumer terminal 118 is any remote terminal through 
which a consumer may access other aspects of the system 100. Consumer 
terminal 118 may comprise any of the input devices, computing units, or computing 
systems described above. Further, consumer terminal 118 communicates with the 
system 100 through any of the communications networks described above. In one 
embodiment, consumer terminal 118 permits a consumer to engage multiple facets 
of the system 100 in an interactive online communications environment. The 
interactive online environment made availabie.through consumer terminal 118 is an 
extension of the network-level incentive award program and is implemented in 
conjunction with other aspects of the system 100. In this context, a consumer may 
uses consumer terminal 118 for a variety of purposes. In one embodiment, 

5 consumer terminal 118 may be used to communicate with and receive information 

IS 

$ from the central rewards mechanism 102. For example, a consumer may use 

? a consumer terminal 118 to do any of the following: enroll in the system; receive 

statements or reports regarding accumulated reward points totals; receive bonus 
details; view potential awards which the consumer may obtain in exchange for 
various numbers of points; select an award; receive redemption information; view 
points adjustments; redeem rewards points for a selected award; request and/or 
receive a reward points advisory statement; receive information regarding where 
and how points were earned and/or how points were redeemed; receive 
information regarding expiration dates for points earned; receive information 
relating to any applicable fees; receive information regarding marketing 
promotions; and/or view a directory of participating retailers, manufacturers, and/or 
third-party providers. 

f00761 In another embodiment, consumer terminal 118 may be used to interact 

with and/or make purchases and generate rewards points from participating online 
retailers, as illustrated by the various phantom lines in FIG. 1. The online retailer 
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may then communicate with the central rewards mechanism 102 to transmit and 
process a consumer ID, purchase data, etc., as described above with reference to 
retailer 104 of FIG. 1. Information communicated between the online consumer, 
the online retailer, and the online central rewards mechanism may include, for 
example, product or service information, prices, availability of the product or 
service, shipping information, rewards points information, available awards, 
information regarding points ratios and points redemption, and/or the like. In one 
embodiment, consumer terminal 118 operates in real-time, as described above 
with respect to rewards terminal 116. In another embodiment, the consumer 
terminal 118 may operate in batch mode, as described above. In still a further 
embodiment, consumer terminal 118 operates in a manner which includes aspects 
of both real-time functionality and batch mode functionality. 
roQ77i In accordance with a further aspect of the invention, the system 100 may 

comprise a rewards server 120 in communication with a database 121, as 
illustrated in FIG. 2. Database 121 may be any type of database, such as any of 
the database products described above for example. Database 121 may be 
{ organized in any suitable manner, including as data tables or lookup tables. In an 

In exemplary embodiment, rewards server 120 may be any hardware and/or software 

© that is configured to communicate with the central rewards mechanism 102 and 

U either the retailer processor 1 10 or the retailer regional processor 114. In alternate 

exemplary embodiments, rewards server 120 may be integrated with retailer 
system 104; rewards server 120 may be integrated with central rewards 
mechanism 102; or rewards server 120 may be separate from both retailer system 
104 and central rewards mechanism 102. In a further embodiment, the rewards 
server 120 may communicate with both a retailer national processor (not shown) 
and the central rewards mechanism 1 02. 
100781 In an exemplary embodiment, rewards server 120 receives, processes, 

and stores both manufacturer data and retailer data. Manufacturer data may 
include descriptions of products and/or services and UPC data transmitted from 
manufacturers 106 who have enrolled in the system 100. The manufacturer data 
may be stored in any suitable form, including data tables or lookup tables. Retailer 
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data may include descriptions of products and/or services and SKU data 
transmitted from retailers 104 who have enrolled in the system 100. The retailer 
data may be stored in any suitable form, including data tables or lookup tables. 
[0079] In an exemplary embodiment, the rewards server 120 performs a plurality 

of functions that might otherwise be performed by the central rewards mechanism 
102. For example, since rewards calculations require significant processing and 
memory resources, performance of calculations processing by the rewards server 
120 at the regional level lessens the processing load on the central rewards 
mechanism 102, thereby increasing the efficiency of the central rewards 
mechanism 102. In an exemplary embodiment, each retailer's region, which 
comprises a plurality of that retailer's stores or outlets, accesses a rewards server 
120 which acts as an intermediary between the retailer regional processor 114 and 
m the central rewards mechanism 102. This configuration relieves the processing, 

power, memory, and other requirements of the central rewards mechanism 102. 
-{ Moreover, each retailer is but one of many retailers that may participate in the 

network level rewards structure. Accordingly, a plurality of rewards servers 120 
f may be in communication with the central rewards mechanism 102 as well as each 

3 of the participating retailer regional processors 114, further alleviating the 

| processing burden and freeing up the resources of the central rewards mechanism 

m 

* 102. 

% f00801 Implementations which include at least one independent rewards server 

120 are also advantageous because cost-effective communications links may be 
used to facilitate communications with the central rewards mechanism 102. 
Performance by the rewards server 120 of many of the "intelligence functions" of 
the system 100, permits transmission of only particular forms of purchaser 
information to the central rewards mechanism 102. In an exemplary embodiment, 
data sent from the rewards server 120 to the central rewards mechanism 102 may 
include the consumer ID and the total number of rewards points earned by a 
consumer in a particular transaction. In another exemplary embodiment, data 
transmitted by the rewards server 120 to the central rewards mechanism 102 may 
also include any pre-selected aspect of the consumer profile, any pre-selected 
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aspect of the purchase data, and/or any other pre-selected data associated with a 
consumer, a retailer, a manufacturer, and/or a third-party provider. Pre-selection of 
the types of data transmitted by the rewards server 120 to the central rewards 
mechanism 102 may be conducted by the system administrator, a retailer, a 
manufacturer, and/or a third-party provider. Thus, data which may be useful for 
purposes of data analysis but unrelated to the rewards feature, such as the 
characteristics of the particular item purchased for example, may not need to be 
transmitted to the central rewards mechanism 102. 
mo8H Exemplary functions performed by the rewards server 120 may include the 

association of UPC and SKU data; manipulation of the rewards criteria applicable 
in particular cases, which may further depend upon the retailer, manufacturer, 
and/or third-party provider involved in a specific transaction with a consumer; 

5 calculation of rewards benefits earned by the consumer; filtration functions for 
9 determining which data is transmitted from the rewards server 120 to the central 
j rewards mechanism 102; and/or various types of data analyses, as described 
2 above. In an exemplary embodiment, the retailer system 104 houses, maintains, 
4 and updates the hardware and/or software of the rewards server 120. In another 
13 embodiment, rewards server 120 may be housed, maintained, and updated by the 
J* system administrator. 

6 r00821 In accordance with another embodiment of the present invention, the 
■Jy system 100 permits an open payment system. Since the invention generally 

provides that consumer participation in the system is based upon a consumer ID, a 
purchaser may use any of multiple payment vehicles (such as cash, check, charge 
card, credit card, debit card, MasterCard®, Visa®, and/or the American Express® 
Card for example) to make purchases at the various retailers and still participate in 
the system. Thus, in one embodiment, the consumer ID is independent of any 
particular payment vehicle, such as a. credit card for example. 
[00831 However, alternate embodiments of the invention may be implemented 

which associate a consumer ID with a particular payment vehicle, such as a 
consumer's credit card account, charge card account, debit card account, and/or 
bank account for example. In this embodiment, the retailer conducting the 
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transaction need only participate in the system to the extent that the retailer 
provides its SKU data to the system 100, such as to the rewards server 120. In 
other words, when a consumer ID is associated with an instrument (e.g., a credit 
card) from a third-party provider, the retailer need not provide a rewards terminal or 
other terminal capable of processing the consumer ID, since the third-party 
provider may process the consumer ID as part of the payment transaction. Thus, 
in this embodiment, rewards benefits may be earned by the consumer on a 
network-wide level without the retailer's direct participation in the rewards feature 
(notwithstanding the retailer's participation in transmitting SKU data to the system). 
Moreover, it will be appreciated that a single consumer ID may be associated with 
multiple third-party payment vehicles, thereby allowing a consumer to generate 
rewards points regardless of the particular payment vehicle selected for a particular 
purchase. 

rop841 With reference to FIG. 4, an exemplary central rewards mechanism 402 

includes a central processor 404 in communication with other elements of the 
rewards mechanism 402 through a system interface or bus 406. A suitable display 
device / input device 408, such as a keyboard or pointing device in combination 
Jj with a monitor, may be provided for receiving data from and outputting data to a 

Jl user of the system. A memory 410 associated with the rewards mechanism 402 

li includes various software modules, such as an enrollment module 412 and an 

!| authentication module 414 for example. The memory 410 preferably further 

includes an operating system 416 which enables execution by processor 404 of the 
various software applications residing at enrollment module 412 and authentication 
module 414. Operating system 416 may be any suitable operating system, as 
described above. Preferably, a network interface 418 is provided for suitably 
interfacing with other elements of the incentive awards system, such as the 
elements described above with reference to FIGS. 1-3. 
[00851 Lastly, a storage device 420, such as a hard disk drive for example, 

preferably contains files or records which are accessed by the various software 
modules, such as enrollment module 412 and authentication module 414. In 
particular, consumer data 422 comprises information received from a consumer 
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upon registration with the rewards mechanism 402. Consumer rewards 424 
comprises data corresponding to each consumer's rewards account. Consumer 
rewards 424 may include cumulative rewards points totals as well as historical 
totals and rewards account activity over time. Retailer records 426 comprises 
information received from the various participating retailers. Manufacturer records 
428 comprises information received from the various participating manufacturers. 
One skilled in the art will appreciate that the storage device 420 and, therefore, 
consumer data 422, consumer rewards 424, retailer records 426, and manufacturer 
records 428 may be co-located with the rewards mechanism 402 or may be 
remotely located with respect to the rewards mechanism 402. If the storage device 
420 is remotely located with respect to the rewards mechanism 402, 
communication between storage device 420 and rewards mechanism 402_may be 

i* accomplished by any suitable communication link but is preferably accomplished 

0 through a private intranet or extranet. 

% roo861 Enrollment module 412 receives information from consumers, retailers, 

and/or manufacturers who wish to participate in the system. Enrollment module 
•I 412 accesses and stores information in storage device 420. Authentication and/or 

validation of the identity and status of participants, including any of the other 
system components, may be performed by the authentication module 414, which 
preferably has access to the records residing in storage device 420. 
9 r00871 With reference to FIG. 5, an exemplary rewards server 502 includes a 

central processor 504 in communication with other elements of the rewards server 
502 through a system interface or bus 506. A suitable display device / input device 
508, such as a keyboard or pointing device in combination with a monitor, may be 
provided for receiving data from and outputting data to a user of the system. A 
memory 510 associated with the rewards server 502 includes a variety of software 
modules, such as an association module 512, a rewards calculation module 514, a 
data analysis module 516, and a filtering module 518 for example. The memory 
510 preferably further includes an operating system 520 which enables execution 
by processor 504 of the various software applications residing at the various 
modules 512, 514, 516, and 518. Operating system 520 may be any suitable 
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operating system, as described above. Preferably, a network interface 522 is 
provided for suitably interfacing with other elements of the incentive awards 
system, such as the elements described above with reference to FIGS. 1-3. 
[00881 Lastly, a storage device 524, such as a database as described above for 

example, preferably contains files or records which are accessed by the various 
software modules 512, 514, 516, and 518. In particular, manufacturer data 526 
comprises information received from a manufacturer, such as descriptions or other 
information regarding the manufacturer's products and/or services as well as UPC 
data for example. Retailer data 528 comprises information received from a retailer, 
such as descriptions or other information regarding the retailer's products and/or 
services as well as SKU data for example. Consumer data 530 comprises 
information pertaining to a consumer, including a consumer ID, purchase data, a 
consumer profile, and/or the like. One skilled in the art will appreciate that the 
storage device 524 and, therefore, manufacturer data 526, retailer data 528, and 
consumer data 530 may be co-located with the rewards server 502 or may be 
S remotely located with respect to the rewards server 502. If the storage device 524 

I is remotely located with respect to the rewards server 502, communication 

between storage device 524 and rewards server 502 may be accomplished by any 
suitable communication link but is preferably accomplished through a private 
hfc intranet or extranet. 

I| r00891 Referring next to FIGS. 6 and 7, the process flows depicted in these 

figures are merely exemplary embodiments of the invention and are not intended to 
limit the scope of the invention as described above. It will be appreciated that the 
following description makes appropriate reference not only to the steps depicted in 
FIGS. 6 and 7 but also to the various system components as described above with 
reference to FIGS. 1-3. 

rOQ90i FIG. 6 is ^flowchart illustrating an exemplary process for capturing and 

processing POS SKU data in accordance with the present invention. The 
association or matching of UPC and SKU data begins with POS data capture (step 
602). When a consumer presents a consumer ID to a retailer 104 at the time of 
purchasing an item from the retailer 104, the consumer ID is processed by a 
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rewards terminal 116 that recognizes the consumer ID and identifies the consumer 
as a participant in the system 100. Purchase data is captured by the retailer POS 
terminal 112. Purchase data may include any of the following: a SKU number; a 
unit price; a total transaction price; the payment vehicle(s) used; a store ID which 
identifies the particular store location if a retailer operates more than one store; a 
department ID, if the store has multiple departments; the date of the transaction; 
the time of the transaction; the employee ID of the store clerk who facilitates the 
transaction; a POS terminal ID to identify the particular terminal conducting the 
transaction; any retailer-specific incentive program ID; and/or the like. The retailer 
POS terminal 112 creates a transaction file comprising the consumer data 
(including a consumer ID) and purchase data (including a SKU number associated 
with each item purchased), and the transaction file is then .stored by the retailer 
S processor 1 1 0 in database 1 1 1 (step 604). 

3 r00911 The various transaction files may be consolidated by the retailer processor 
j 110 and then forwarded to the retailer regional processor 1 1 4 (step 606) for further 

back-office and cumulative data analysis performed by retailer 104. 

4 r00921 In an exemplary embodiment, the transaction file is transmitted by either of 
m the retailer processor 110 or the retailer regional processor 114 to the rewards 
P server 120 (step 608). The SKU information for each item included in the 
u transaction file is then matched to or associated with corresponding UPC 

information which identifies the related manufacturer 106. An exemplary 
association process is illustrated in the flowchart of FIG. 7. Association of SKU and 
UPC data may be accomplished through any data association technique known 
and practiced in the art. For example, the association may be accomplished either 
manually or automatically. Automatic association techniques may include, for 
example, a database search, a database merge, GREP, AGREP, SQL, and/or the 
like. . 

f00931 In an exemplary embodiment, database 121 receives and stores 

manufacturer data, including UPC data, from manufacturer 106 (step 702). 
Database 121 also receives and stores retailer data, including SKU numbers, from 
retailer 104 (step 704). In an exemplary implementation, database 121 stores 
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manufacturer data in a separate manufacturer data table for each participating 
manufacturer 106. Each manufacturer data table may comprise a plurality of fields, 
such as "UPC" and "product description" for example, and a plurality of records, 
each of which corresponds to an item offered by the participating manufacturer 
106. In one embodiment, database 121 stores retailer data in a separate retailer 
data table for each participating retailer 104. Each retailer data table may comprise 
a plurality of fields, such as "SKU" and "product description" for example, and a 
plurality of records, each record corresponding to an item offered by a participating 
retailer 104. 

[00941 Data from each of the manufacturer and the retailer data tables is then 

associated (step 706). The association step may be accomplished by a database 
merge function, for example, using a "key field" in each of the manufacturer and 
retailer data tables. A "key field" partitions the database according to the high-level 
class of objects defined by the key field. For example, a "product description" class 
may be designated as a key field in both the manufacturer data table and the 
% retailer data table, and the two data tables may then be merged on the basis of the 

"product description" data in the key field. In this embodiment, the data 
corresponding to the key field in each of the merged data tables is preferably the 
same. That is, the product descriptions in the manufacturer data table matches the 
product descriptions in the retailer data table. However, manufacturer and retailer 



4 



4 



^ data tables having similar, though not identical, data in the key fields may also be 

ill 

merged by using AGREP, for example. 
[00951 The result of the data association step is the creation of a separate data 

table, such as a UPC/SKU lookup table for example (step 708). Thus, when the 
rewards server 120 receives the data (e.g., consumer ID and SKU data) captured 
by the POS terminal (step 710), the rewards server 120 may search the UPC/SKU 
lookup table for the appropriate SKU number and then match the SKU to the 
corresponding UPC data (step 712). In an exemplary embodiment, the "SKU" and 
"UPC" fields in the UPC/SKU data table may be linked by an appropriate pointer. 
That is, when the rewards server 120 searches the UPC/SKU table and locates the 
particular SKU that has been captured and transmitted by the POS terminal, the 
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specifically identified SKU datafield uses a pointer to direct the rewards server 120 
to the UPC datafield that corresponds to that SKU number. In an exemplary 
embodiment, the UPC datafield may be linked by one or more additional pointers to 
other key fields, such as a consumer ID, a retailer ID, a manufacturer ID, and/or a 
third-party ID. These additional pointers may be used as means for compiling data 
which may be useful in any of the various data analyses performed by the rewards 
server 120. In this manner, the association of POS SKU numbers and UPC data 
may be used to create a context in which standardized, network-wide analyses 
may be conducted. 

roQ961 In an exemplary embodiment, the rewards server 120 utilizes the 

association information to calculate the rewards points generated by a consumer's 
purchase. For example, an appropriate series of pointers leading from a SKU to a 
tf UPC to a manufacturer ID may ultimately direct the rewards server 1 20 to employ a 

ft 2-for-1 manufacturer rewards ratio to award a consumer twice as many points as 

% the dollar amount of the consumer's total transaction price. In another exemplary 

embodiment, an appropriate series of pointers may result in the calculation of 
J rewards points based upon multiple rewards criteria, such as rewards criteria 

l n associated with the manufacturer of the item as well as rewards criteria associated 

with a third-party provider for example. 
[00971 In a further embodiment, the rewards server 120 may use the association 

of UPC and SKU number data to analyze a variety of marketing variables across 
multiple manufacturers and retailers. For example, rewards server 120 may use a 
series of pointers leading from an SKU to a UPC and then to a "consumer profile" 
field or table to correlate, for instance, consumer spending behaviors, particular 
manufacturers, and/or specific products across multiple retailers for example. 
[00981 In alternative embodiments, association of the UPC data and SKU number 

may take place at any of the rewards terminal 116, the retailer POS terminal 112, 
the retailer processor 1 10, the retailer regional processor 114 (or a retailer national 
processor), and/or the central rewards mechanism 102. 
roo991 In one embodiment, the retailer 104 may offer an incentive or loyalty 

program that is independent from the program offered by the system 100. 
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Alternatively, the retailer 104 may use the system's UPC data for its own internal 
purposes. 

[001001 With momentary reference to FIG. 6, in one exemplary embodiment, the 

consumer ID and the earned rewards information are transmitted to the central 
rewards mechanism 102 after the rewards server 120 has filtered out consumer 
data associated with the consumer ID (step 610). In another embodiment, the 
central rewards mechanism 102 may use the captured and matched UPC 
information to determine rewards and/or for data analysis. 
[001011 Consumers may utilize computing devices to assist in the purchase and/or 

loyalty process, and in particular, the consumer may utilize a PDA to facilitate the 
purchase and/or loyalty process. During the purchase and/or loyalty process, the 
third-partv provider or consumer may ftee ^want to insure that any content 
downloaded or used in association with the PDA is secure in how it is collected, 
i| assembled, and delivered to the PDA device. In an exemplary embodiment, the 

% PDA may have direct access to an Internet web site portal that offers secure 

3 personal content from a content provider, such as, for example, an on-line banking 

J or financial institution. Using the web site portal, the content provider may offer 

% personal or confidential data, such as financial information, to PDA users in a 

P Qornro (o g ^nrryptpril nnvironmen t manner . The exemplary system and method 

may establish a PDA portal link to the web site for collecting specified information 
for a user and transmitting the information to the remote device. The information 
from the web site is retrieved usin g a se cure open network protocol, such as 
SSL 3.0. The retrieved information is une ncrypted within a tamper resistant 
hardware encryption device (HED1 and can be re-encrvnted using the same 
HEP and a user specific pass-phrase. T he resulting secure information is 
downloaded to the PDA to be stored encrypted with the pass-phrase. When 
the PDA user wants to view the secure information - the user enters the pass- 
phrase, which will be used to decrypt the secure information. After a ore-set 
amount of time, the un-encrvnted information is dele ted from the PDA, which 
may require the user to enter the pass-p hrase again. To receive secure 
information, the PDA eoniafitefacilitates contact with the portal and 
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nr.tnhlir.hfis the establishment of a connection, authenticates itself to the network 4 
and allows thn nnar to facilitates complete secured transactions or transmissions 
over the network. 

[001021 This ap proach substantially secu res the content (or a portion of the 

content) from its source channel to the PDA. Th e exposure or visibility of the 
personal content in an unsecured state is essentially eliminated or 
minimized. The phrase "end to end" is ofte n used to describe when content 
is substantiall y sec ure from its source to when it is used. It is desirable to 
expand this concept for PDAs because much of the time thev are used in a 
disconnecte d fashion. Being disconnected, the content is physically stored 
on the PDA and can be accessed multiple times. S o once the connection to 
the network has been broken, the content should continue to be secure 
j j a gainst improper use. Therefore, it is helpful i f the content can be secured 

3 while on the PDA and be viewabl e after the u ser has properly authenticated 

himself. The content, or anv portion thereof, m av be secured at anv point or 
se gment a lon g the tr ansmission or storage or all points along the process 
de pendi ng on the needs of the system. 
m r001031 Providing content security betw een multiple layers of a system 

11 usually includes each p air of communicating components negotiating the 

m 

i j method used for securing anv interchange between them. Each step could 

Q use a different metho d for encryp tin g the co ntent and producing a challenge 

for securing an environment, because data will be in "the clear" (e.g.. not 
encrypted! at intermedia ry points alo ng the communication path. However, 
since the content being collected mav be in "th e clear" while inside a tamper 
resistant, pro grammable cryptographic module, e.g.. the HEP, the data is 
substantially secure from eavesdroppin g and direct attacks on the hardware 
in which the data is in "the clear". The data can be secured using a standard 
algorithm using a pass-phrase established bv the user. This pass-phrase 
can serve to authenticate the user when view ing content on the PDA. 
Moreover, the standard protocols us ed bv the Internet are not necessarily 
trivial in the resources that are used to decr ypt the content. As such, a 
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standard al gorithm m a y be used for encrypting the c ontent to be placed onto 
the PDA. This is so because s tandard protocols have had rigorous analyses 
to verify and decrypt the content, for example, w ithout using a pass-phrase 
or the Thole Data Encryption Standard (3DES1 kev. 

An exemplary system and method of the pre sent invention secures 
the data f rom its source to when it is act ually viewed or used bv the 
authorized user. It can use methods for securin g the content that are 
a ppropriate for the environm ent bein g used. F or example, to collect the 
content fr om the source channels, standard internet methods (SSU mav be 
used. However, since some PDAs are limited in their processing capabilities, 
a different method, requiring less resources, of securing the data on the 
device can be used ( e.g.. ECCL 

Once this content and the mechanism to push it onto the PDA are 
available, all types of personal content can be placed onto the customer's 
PDA for their off-line use. Thi s could inc lude their travel itineraries, monthly 
account statements, investment portfolio, and or the like. This enables 
personal content to be securely di stributed to the customer's PDAs, thereby 
placing content onto a device that can b e connected or disconnected. In 
addition, how the content is used will increa se the value of the content that 
content providers make available. 

As more fullv described in FIGS. 8-11. PDA portal registration, 
establishin g a secure session. PDA upda tes, and the like are illustrated in 
accordance with various exemplary embodiments of the present invention. 

In one embodimen t. FIG. 8 illustra tes PDA portal registration where a 
user connects to a PDA portal 801 web site from a desktop browser SOS- 
using a secure open systems transport protocol such as SSL 3.0. The user 
,_ indicates that selected content be refreshed ( synching a PDA 807) and PDA 
807 facilitates a connection to PDA portal 801. In an exemplary embodiment 
of the present invention, the user need n ot provide her user ID and password 
for each secure channel each time PDA 80 7 is svnched. In this manner, the 
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session f or PDA 807 ma y have a different ex piration rate (e.g.. than the about 
10 minutes used for wired Internet use). 
[001081 For examp le, the user re gisters that certa in selected content can be 

download ed to PDA 807 during a synchro nization event. The user selects 
content from secure web sites or channels and provides a user ID and 
password (e.g.. a PDA P ortal manag ement user ID and password!. The user 
provides a PDA security pass-phrase, whic h normally includes a string of 
numbers a nd characters. The user ID and password can be used later to 
authenticate the user prior to maintaining the user's PDA portal information. 
The pass-Phrase is used with the encryption mechanism used to protect the 
content during transmission and storage on PDA 807 at the later 
synchronization event. 
rooiQ91 PDA 807 may connect to a PD A portal web server 809 bv. for 

exam ple. PD A 807 an d/or desktop browser 803 communicating with PDA 
portal 801 via the Internet. After connecting - the user enrolls in the PDA 
| portal service and establishes a n account i ncluding selection of channels to 

be collected durin g each synching reguest. PDA portal 801 then identifies 
the user and interrogates the c hannels she has selected. For example, a 
pass- phras e ma y be used when accessing secure channels. The user mav 
enter the pass-phrase on a form o n desktop browser 803- encrypt the pass- 
phrase using, e. g.. SSL 3.0. and forward the pass-phrase to PDA portal 801. 
If one (or more! of the channels includes secure content, the PDA portal 
connects t o the so urce channel and coll ects the desired content. For 
example, optionally, establishing s essions with secure channels can be 
executed fro m desktop browser 803- rather than PDA 807. Establishing 
sessions can include establishing an in itial session, a new session, or 
renewing an expired session, 
roonoi The user can use anv appropriate device to register with PDA portal 

801. including PDA 807 or desktop browser 803 (e.g.. a personal computer). 
The content to be downloaded may include secure services (e.g.. where the 
user already has a relationship wit h a third-partv provider bv a prior 
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enrollment ) or new secure services (e.g.. where the user does not already 
have an existin g relatio nshi p with the third pa rty provider). If a new service 
is being requested for a PDA download, the user can separately register for 
that service through th e normal web site registration process for the service 
and provide a user ID and password for access to the secure service. Secure 
services selected bv the user ca n include incentive programs, such as 
frequent flyer services or redemption and shopping services. Other 
informatio n that may be entered at reg istration includes demographic 
informatio n, such as name and address a nd kev information, such as an 
account number for later use when retrieving data fro m the secure service- 
In the event that a user forgets their PDA portal user ID or password, the 
previously saved pass-phrase or user demographic i nformation can, be used 
j* to verify the user du ring a secur e conversation between desktop browser 803 

l| and PDA portal 801. After the user has been verified. PDA portal 801 can 

% provide th e user with their forgott en user ID or allow the user to change their 

jj password. In an alternate embodiment, ins tead of a separate user ID and 

J password, the pass-phrase could also be used to authenticate the user prior 

% to maintainin g their PD A portal information. 

? J r0Q1in Instead of connecting directly to the source. PDA portal 801 can 

j| connect to a hardware encryption device (HEP) 805 with the request. HEP 

j| 805 intercepts the response, decr ypts the SSL 3.0 pass-phrase, and stores 

the pass-p hrase on HEP 805. For each s ecure channel selected, the user 
mav provide kev information needed to access t he pertinent content from 
that channel (e. g.. an accou nt number). Such data or information is entered 
onto a fo rm on PPA 807. encrypted using, for example. SSL 3.0 following a 
kev exchange with PPA portal 801 terminated wi thin HEP 805. and forwarded 
to PDA portal 801. HEP 805 can decrypt the SSL traff ic, extract the name 
value pairs, encrypt the value using a 3PES kev. e.g.. known only to HEP 805. 
HEP 805 can then pass the URI (Uniform Resource Iden tifier), including the 
name value pairs, but with the value repl aced with the 3DES encrypted value. 
to PPA portal 801. PPA portal 801 stores the key information in a database 
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or file. The p ass- phrase can be s tored securely bv storing it directly on HEP 
805. encrypting it on HEP 805. or using a kev (e.g.. 3PES1 known to HEP 805 
and encrypting the pass-phrase within HEP 805 and stori ng the pass-phrase 
external to HE P 805 (e.g.. in a database or file). 
[001121 When PPA 807 synchronizes for the first tim e. PPA portal 801 mav 

not recogn ize the account being requ ested. The user can identify 
themselves by entering their user IP and password or oass-phrase on PPA 
807. PPA po rtal 801 c an associate this iden tifier with the user's profile (e.g.. 
kept locally to PPA portal 801). The initial synchroniza tion uses a secure 
open network transport protocol (e.g.. SSL 3.0). because HEP 805 identifies 
the user before the pass-phrase can be used for encryption between PPA 807 
and HEP 805. 



J* r001 1 31 As moro fu l ly d e scr i bed in Figures 1 6, i n an exemplary ombodimont, wh e n 

13 a us e r i ndicates the selected content should b o r e freshed (synching their PDA 

J Since the encryption riftvire V th e dev i ce wi l l connect is secure, there is no need 

| to store the PDA portal. Th e PDA portal i dentif i es th e user and interrogat e s the 

^ channels th e y have se l ected. If one (or moro) of the chann e ls includ e s s e cure 

, n cont e nt, th e PDA portal conn e cts to the sourc e channel and coll e cts th e desired 

3 cont e nt. Howov o r, inst e ad of conn o ct i ng directly to the source, the portal connects 



t o n h nr iwn r" "rr - yp "" " devise C-"= n ) '" ith fhr> rngnnH- ThP pass-phrase in an 
encrypted form. HEP 805 connects to the channel source using a secure 
connection where the encryption key is negotiated between the two parties. The 
channel source content is prepared and returned to HEP 805 in an encrypted 
form. For each secure channel s elected, the user mav provide the kev 
information needed to access t he HED in an encrypted form. — T-herelevant 
content from that channel (e.g.. an accoun t number!- Such data or 
information is entered onto a form, encrypted using , for example. SSL 3.0 
following a kev exchange with PPA portal 801 (e.g.. HFD 805). and forwarded 
to PPA portal 801. Key information need no t be visible to PPA portal 801. 
even though such key information mav be housed in the PPA portal 801 
environment. HEP 805 intercepts the reouest and decrypts the contenM^i 
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The kev information is stored on HEP 805 in an unenc rypted state (since HEP 
805 is a secure device) for that PDA portal 8Q1 account. However, before 
forwarding the content to thePPA portal JM for further processing, the-HEDJOJ 
interrogates the content. As tt HED 805 interrogates the content, any imbedded 
links willcjn be isolated. The resulting content wtan then be re-encrypted using 
semea standardized algorithm (such as. for example. ECC) using the encryption 
key (pass-phrase) that has been established by the user. The encrypted content 
as well as the "in the clear" links will then be returned to thePPA portaL§Qi for 
continued processing. 

roQH41 The content will then be forwarded to the-PDAJIQZ for storing either 

piecemeal as the collection of each channel is completed, or as a whole once all 
the content has been collected. As such, on ce the set-up has completed, the 
: =2 ap propriate PDA portal 801 acc ount and connection information is stored in a 

user profile at PDA portal 801 and on PDA 807. T he content is then sent to the 
PD A 807 in the same form it hashad been received by thePPA portaLSQl from the 
J channel (for non-secure content) or the-HEDJQS (secure content). When the user 

i desires to view the secure content, the-PDA , 807 requests that the user 

3 m ith n nt i cnt e s authenticate himself by entering his pass-phrase, which will be used 

| to dgfifyptfacilitate decrypting the content. The authentication may exist each 

* time the user tries to access this content, as the content will continue to be stored 

Tj in an encrypted state on th ePPA device. 807, 

[001151 This approach s o cur e c th o content from i ts source channel all tho way to 
tho dovico. The exposure or visib i lity of tho persona l content i n an unsocurod stat e is 
oliminatod or m i n i miz e d. Tho term ond to end is often used to doscribe that cont e nt is secur e 
from i ts source to whon it is used. This concept noods to bo expanded for PDAs b e cause 
much of tho time they ar e us e d in a disconn o ct o d fashion. Be i ng disconnect e d, th e cont e nt i s 
physically stored on tho device and can bo acc e ssed multip le tim e s. So onco th o connoction 
to tho network has b o on broken, th o cont e nt" should continuo to be'socurod against i mproper 
us o . Th o r o for o , th i s so l ution also includes that tho content b o secured wh i l o on tho PDA and 
bo viowablo only after tho user has properly authenticated themselves. However, one skilled 
in tho art wil l appreciat e that tho i nvention may bo conf i gured such that the content, or any 
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portion thoroof, may bo oocurod at any point or segment a l ong tho transmission or storag e or 
a ll points along th e process. 

r001 1 61 In accordance with an exemplary emhodiment of the present invention. 

the system and method utilizes a hardware n nr.ryption rt e v i ce HED 805 as a filter as 
the content is streamed into the-PDA portalrJIpjL In ono embodiment, th e l bj 
content will be decrypted from the standard internet interaction, and re-encrypted 
using a standard algorithm. This re-encryption may be applied to only the content, 
not any links that are included. This allows the link to be visible to the portal 
function to request the additional content pages. 

rooi171 Providing content security b e tween mu l t i pl e layers of a system usually 
consists of o ach pair of communicating components n e gotiating tho method they wi l l us e for 
securing any i ntorchango betwoon them. — Each step cou l d use a differ e nt method for 
" u encrypting tho content, producing a s e cur e env i ronm e nt. How e vor, since tho cont e nt being 
fit collected will be stored on tho PDA device, thoro is little nood to negotiate tho method for 
|! securing th o data. Inst e ad th e data will b e s e cured using a standard algorithm using a key 

I established by the user. — This key (or pass phrase) wi l l then serve as tho moans for 
"% authenticating tho us e r, and must bo supplied by th e user wh e n they want to view th o content 
t on tho PDA. Another reason a standard a l gor i thm may be used for e ncrypting tho content to 
=; bo plac e d onto th o PDA is to minimiz e the r e sourc e s no o dod to d e crypt tho cont e nt on the 
};| PDA. The standard protocols used by th e internet aro not trivial in tho resourcos that are 

II n oo dod to d e crypt content. 

t* [001181 This system and method secures tho data from i ts source to when i t is 
fj actual l y view o d/us o d by tho authoriz e d us e r. It wi l l use methods for s e curing tho content that 
aro appropriate for tho onvironmont being usod. For examp l e, to collect tho content from the 
sourc e channels, standard intern e t methods (SSL) may bo usod. How o vor, since th o PDAs 
aro limited in their differ e nt capabil i t i es, a differ e nt method, requir i ng l ess resourc e s, of 
s e cur i ng th e data on the d e vic e is n ee d e d (such as ECC). 

[001191 Since tbe-PDA portal 801 serves as a collection point, it is equally 

important to insure the content is secured as it is being collected and aggregated 
with content from other channel sources. This invention may secure the content 
itself while exposing any links for additional data collection. In this way, the 
exposure of secure data is minimized outside the source, th o hardwar e e ncryption 
deviee rHED 805. or when viewed by the authenticated user. 
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r001201 Onco this contont and tho m e chanism to puoh it onto the dov i c e ar e 
availabl e , all typos of personal contont can bo placed onto 

r001211 FIG. 9 illustrates a PDA portal 9 01 establishing a session for secure 

content in accordance with an exemplary embo diment of the present 
invention. T he user indic ates that a PDA 907 is t o sync with PDA portal 901 
to refresh the content for the custom e rs PDA for th e ir offline use. This could 
i nc l ude th e ir travel itinorarios, month l y account statomonts, and o v e n th ei r 
investment portfolio. — As such, this solution will enable personal contont to be 
s o cur o ly distribut e d to th o customers PDA's, ther e by placing contont onto a d e vic e 
that can bo conn e cted or disconnoct o d in how it is usod will i ncroaso tho valu e of 
the ^nnt n nt prnwiH n ro . mnkn nvnilnhle subscribed channels (e.g.. 

subscribed co ntent!. PDA 9 07 connects to a PDA portal web server 909. For 
example. PDA 907 mav use the Internet to co nnect to PDA portal 901. PDA 
portal web server 909 interrogates the channels to be refreshed for the 
request (e.g.. interrogates the secured content to be refreshed) from either 
PDA 907 or from a database or file connected to PDA portal 901. If secure 
content (e.g.. from a credit card company} i s desired. PDA portal 901 returns 
to PDA 907 for the session cookie for each secure ch annel. If secure content 
is desired. PDA portal 901 reouests the previou sly encrypted session ID from 
a database or file system local to PDA portal 901. For example. PDA portal 
901 can use a HEP 905 to encrypt the session ID w ith 3DES kev generated 
internal to HEP 905. The se ssion co okie includ es a session identifier 
identification (e.g.. session ID). The session ID for each secure channel is 
requested from PDA 907. The session ID is encrypted with the user's pass- 
phrase or with a different kev (such as. a 3 PES kev). e.g.. only known to HEP 
905. 

[001221 Establishing sessions c an include establishing an initial session, a 

new session, or renewing an expired session. If a session cookie does not 
exist, proces sin g continues where HEP 905 a t PPA portal 901 intercepts a 
pass-Phrase, decrypts the SSL 3.0 pass-ph rase, and stores the pass-phrase 
on HEP 905. Since HEP 905 is secure , there is no need to store the pass- 
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phrase in an encrypted state. In an exemplary embodiment of the present 
invention, the secure content on HEP 905 i s visible aft er the user enters his 
or her pass-phrase. If the session cookie does no t exist. PDA portal 901 
requests PDA 907 to prompt the user to enter their use r ID and password for 
the subscribed channel, e.g.. secure content(each channel or secure site can 
have a different user ID and password pair). For exa mple. PDA 907 encrypts 
the user ID and pa ssword using ECC wit h the pass-phrase pro vided bv the 
user. Th e pass-p hrase for the user can be entere d on PDA 907 during the 
user ID and password svnc event, since the pass-phrase is not stored on 
PDA 907. T he pass-phrase for the user is stored on HEP 905. 
rooi231 The encrypted user IP and password is retu rned to PPA portal web 

server 909. and PPA portal web se rver 909 forwards the request to HEP 905. 
In one e xem plary embodim ent of the present in vention. PDA portal web 
server 909 does not have access to the user ID and password, the pass- 
phrase, and the s ession cookie (which mav not be encrypted). HEP 905 
decrypts the user IP and password using ECC and the pass-phrase for the 
J user account. The pass-phrase used for decryption of the user IP and 

password was previou sl y stored at web server 909 using HEP 905 as 
described in connection with FIG. 8. HEP 905 encrypts the request using 
SSL 3.0 following a ke y exchange with a c hannel web server 911 of a channel 
§j 913. For e xam ple. HEP 905 mav communicate with c hannel web server 911 

via the Internet. If the user IP and password is successfully decrypted 
(because the pass-p hrase del ivered from PPA 907 i s the same as the pass- 
phrase previously provided during registrat ion), then HEP 905 re-encrvpts 
the user I P and pass word using a standard secure internet transport 
protocol, such as SSL 3. 0. following a key exchange with channel web server 
911 to provide secure content. The encrypted s ession request is directed to 
channel web se rver 911. and channel web server 911 decrypts the user IP 
and password, verifies the user IP and passwo rd pair, and establishes a 
session. The encrypted authentication re quest is directed to channel web 
server 911. Channel web server 911 decryp ts the user IP and password. 
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verifies the user ID and password pair, and establishes a session, e.g.. bv 
issuin g a session ID within an HTTP cookie (e.g.. a session cookie). 
Accordingl y, the secu rit y of PDA portal 901 can be enhanced because the 
user ID and password was not "in the clear" ( e.g.. outside HEP 905). In this 
manner, if a hacker gained access to PDA portal 901. the hacker could not 
learn the user ID an d password bv monitoring t raffic at PDA portal 901. 
Channel content 915 communicates with channel web server 911 to serve the 
req uested c ontent a nd return it to channe l web server 911. 

[001241 An encrypted session cookie is returned t o HEP 905. and HEP 905 

decrypts the SSL 3.0 session cookie and encrypts the session cookie with 
ECC. The en cr yption of the sessio n cookie with ECC uses the user pass- 
phrase as the kev. The credentials are hashed with a ran dom number and 
salted. The encrypted session cookie is returned to PPA po rtal web server 
909. directed to PDA 907. and store d on PDA 907 in its en crypted form. As 
the session cookie is received. PDA 907 facilitates regist ration of the secure 
channel which the session cookie is to be used with. 

[001251 Once the session co okie has been established, the normal method 

for refreshing the content for the selected c hannels is executed. 
Accordingly. HEP 905 at PPA portal 90 1 intercepts a pass-phrase, decrypts 
the SSL 3.0 p ass- phrase, and stores the pass -phrase on HEP 905. Since HEP 
905 is secure, there is no need to store the pass- phrase in an encrypted 
state. Expiration of the session cook ie will be configurable. These types of 
session cookies need not expire every ten minutes: rather, such session 
cookies could have a duration of several mont hs or more, for example. 

r00126l In an alternate embodime nt of the present invention. PPA portal 901 

reguests PPA 907 to prompt the user to ente r his user IP and password for 
the subscribed secure content. PPA portal 901 uses a secur e open network 
trans port protocol, such as SSL 3.0. to transmit the u ser IP and password 
from PPA 907 to HEP 905 as the end point for the SSL 3.0 transmission. HEP 
905 re-encrvpts the user ID and passw ord using a standard secure internet 
transport pr otocol, suc h as SSL 3.0. following a kev exchange with channel 
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web ser ver 911 to provide secure content. The encrypte d authentication 
re quest is directed to channel web server 911. Channel web server 911 
decr ypts the user ID and passwo rd, verifies the user ID and password pair. 
and establishes a session, e.g.. bv issuing a session ID within an HTTP 
cookie (e.g.. a session cookie). Accordingly, the security of PDA portal 901 
can be enhanced because the user ID and passwo rd was not "in the clear" 
(e.g.. outside HEP 905). 

In an alternate embodiment of the present in vention. HEP 905 can 
encr ypt th e session I D with the pass-phrase and return the result to PDA 
Portal 901. which can be transmitted to PDA 907 for sto rage as the session ID 
for the associated secure conte nt or channel- 
In another alternate embodiment of the presen t invention, the session 
ID can be stored loc all y to PDA portal 90 1 and protected with a 3DES kev 
along with a salt. Using HEP 905. a hash of the session ID with the stored 
salt usin g a hashing algorithm such as SHA-1. as d escribed in "Applied 
Cryptography: Protocols. Algorithms. And Source Code In C" . supra, can be 
com pleted. The hashed sessi on ID can be provide d to PDA portal 901 to be 
transmitted to PDA 907 for storage associate d with the appropriate secure 
content or channel. 

Once the session ID has been established and stored , synchronizing 
the content for the selected secured web sites is executed. Accordingly. 
PDA 907 sends a Universal Resource Iden tifier (URI) to PDA portal 901 
requesting the secure content. Depending on the se curity desired for the URI 
req uest, the URI reouest can be tran smitted (e.g.. unencrypted), encrypted 
using an open networks transport protocol (such as SSL 3.0). or encrypted 
using a user-entered pass-phrase and an encryption alg orithm such as ECC. 
If the URI is encrypted using the user pass-phras e. PDA portal 901 can 
re quest HEP 905 to decrypt the URI. e.g.. using the pr eviously stored user 
pass-phase. PPA portal 901 supplies the URI. the previo usly encrypted (e.g. 
3DES) and saved session ID. and a ny desired encrypted (e.g. 3DES) and 
saved kev information to HEP 905. The kev information can be provided to 
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HEP 905 as a name value pair, e.g.. with the kev date encrypted. HEP 905 
decrypts the session ID and the kev information. The actual URI request is 
built bv filling in name value pairs with the decrypted value and building the 
session cookie. 

r001301 In another alternate embodiment of the present invention, if the 

session IP was previously encrypted using the pass-phase and returned to 
PDA 907 for storage, the encrypted session IP can be forward to PPA portal 
901 (e.g.. typically as a session cookie associated with the relevant URh. In 
such a case. PPA portal 901 forwards t he URI reouest. the user IP. and the 
encrypted session cookie to HEP 905. HEP 905 decrypts the sess ion cookie 
associated with this user IP using the pass-phrase. 
r001311 In another embodim ent of the present inve ntion, if a salted and hashed 

session IP was previously stored on PPA 907. the salted and ha shed session 
IP can be forwarded with the URI re quest to P PA portal 901. PPA portal 901 
forwards the URI reouest. the related user IP. the locall y encrypted (e.g. 
3PES1 and stored session IP. and the salted and hashed session IP returned 
from PDA 907 to HEP 905. HEP 905 de crypts the session ID previously 
locally stored and salts and hashes the result. If the newlv created value 
matches the salted and hashed value returned from PPA 907. then the 
hashed session IP previously sent to PPA 907 is the same on e that was 
returned without exposing the actual session IP to exposure from theft from 
PPA 907. 

rOQ132l HEP 905 negotiates a secure open network tran sport protocol. 

terminating in HEP 905. with the secure content web site. In one alternate 
embodiment of the present invention, the transpor t protocol is decrypted 
within HEP 905. and re-encrvpted using the user pass-phrase. The re- 
encrvpted content is transmitted to PPA 907 directly from HEP 905 or bv PPA 
portal 901. if PPA portal 901 is used as an intermediary for PP A 907. HEP 
905 extracts links from the current se cure page and provides the links back 
to PPA portal 901. As such. HEP 905 determines (e .g.. based on its 
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synchronization rules), if that additional content should be s ynchronized to 
PDA 907. 

[001331 In a less secure environment. PDA Portal 901 rece ives the returned 

secure content and passes that content to HEP 905. HEP 905 encrypts the 
content using the user pass-phrase and transmits the secu re content to PDA 
907 or bv PDA portal 901. if PPA portal 901 is used a s an intermediary for 
PPA 907. In such an embodiment. PDA portal 901 request a ny additional 
links within the current page based on its s ynchronization rules. 
[001341 If the fetch of the secure content fails, becaus e the secure web site has 

expired the session, for example. PPA 907 can be challenged to enter the 
secure web site user ID and password ag ain (e.g.. a s described above in 
connection with when the session did not exist). The content is forwaj-ded to 
jj PDA 907 for storage (either piecemeal as the collec tion of each channel is 

O completed or the encrypted content will be saved o n PDA portal 901 and 

jj forwarded to PDA 907 as a whole! once all the con tent has been collected. 

N PDA 907 accepts cont ent until PDA portal 901 signals the synchronization 

,| event is over. When the user desires to view the se cure content. PDA 907 

l n requests that the user authenticate himself bv ente ring his pass-phrase, 

tip which is used to decrypt the content. The unencrypted content exists on 

\£ PDA 907 for a predetermined amount of time, after which it ca n automatically 

:| be deleted . The predetermined time is determined b y the user profile stored 

at PDA portal 901. To view the content again, the user mav enter the pass- 
phrase aoain. After using the pass-phrase, the pas s-phrase can be purged 
from PDA 907. If the user removes the chann el with secure content or logs 
out, for example, the secure content and associated se ssion cookie are 
deleted from PDA's 907 storage. At the nextsvnch. PDA portal 901 is notified 
and the channel is removed from the user's profile. 
rOQ1351 Thus. FIG. 9 illustrates establish ing a PDA portal session for secure 

content in accordance with an exemplary em bodiment of the present 
invention. 
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[001361 FIG. 10 illustrates a PDA portal registration and establishing a 

session in accordance with an exemplary embodiment of the present 
invention. The user goes to a PDA portal 1001 web site from their desktop 
web browser 1003. For example, a PDA 1007 and/or desktop browser 1003 
ma y commu nicate wit h a PDA portal 1001 via PDA port al web server 1009 
(e.g.. via the Internet!. The user enrolls in the PDA portal service and 
establishes an account including selection of channels to be collected during 
each sync reouest. For example, the pass-phrase used when accessing 
secure channels must be entered on a form on desktop web browser 1003. 
encrypted u sing SSL 3.0. and forwarded to PDA portal 1001 . At PDA portal 
1001. an HEP 1005 intercepts the pass-phrase form, decrypts the SSL 3.0 
pass- phras e, and st ores the pass-phrase o n HEP 1005. Since HEP 1005 is 
secure, there is no need to store the pass-phrase in an encrypted state. 
3 r001371 For each secure channel that is selected, the user provides kev 

I information needed to access the pertinent content from th e channel (e.g.. an 

4 account number!. Additionally, since these channels are secur e, each 

j secure channel will reouire the definition of the user IP and p assword for 

g accessing the account, for example . This data is entered onto a form and 

A encrypted using SSL 3.0 following a kev exchange with P DA portal 1005 (e.g.. 

ry 

? with HEP 10051. HEP 1005 intercepts the request and decrypts the content. 

9 The kev information is stored on HEP 1005 in an unencrypted sta te (because 

m 

HEP 1005 is a secure device! for that PPA portal account. The user ID and 
password for the channel is not stored. Inste ad, the user ID and password is 
encrypted using, for example. SSL 3.0 following a ke v exchange with a 
channel web server 1011 of a channel 1013. For example. HEP 1005 mav 
communicate with channel web server 1011 via the Inte rnet. Channel content 
1015 communicates with channel web server 1011 to serve the requested 
content and return it to channel web server 1011. 
r001381 The encrypted user IP and password request is forwarded to channel 

web server 1011. Channel web server 1011 decrypts the user IP and 
password, verifies the user IP and password pair, and establishes a session. 
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The session ID for the session is encrypted using SSL 3.0 and the negotiated 
keys. The encrypted session cookie is returned to HEP 1005. HEP 1005 
decr ypts th e SSL 3.0 session cookie and encrypts the session cookie with 
ECC using the user pass-phrase as the key. Additionally, t he credentials are 
hashed with a random number and salted. 
rOQ1391 The encrypted session cookie is directed to PPA 1007 and stored on 

PDA 1007 in its enc r ypted form. As the encrypted session cookie is 
received. PDA 1007 will register which secure channel the encrypted session 
cookie is to b e used wit h. Once the set-up has completed, the appropriate 
PDA portal account and connection information is sto red in the user profile 
at PDA portal 1001 and on PDA 1007. Expiration of the sess ion cookie will be 
, . configurable. These types of session cookies need not expi re every ten 
minutes: r ather, such sessio n cookies could h ave a dura tion of several 
months, for example. Thus. FIG. 10 illustrate s a PDA p ortal registra tion and 
establishing a session in accordance with an exem plary embodiment of the 
present invention. 

FIG. 11 illustra tes a PDA p ortal channel update in accordance with an 
exemplary embodiment of the present invention. T he user indicates that a 
PDA 1107 is to svnc with a PDA portal 1101 to refresh the content for their 
subscribed channels. PDA 1107 connects to PDA portal 1101 vi a a PDA 
portal web server 1109. For example, a PDA 1107 mav communicate with 
PDA portal 1001 via the Internet. PDA portal web server 1109 i nterrogates 
the channels to be refreshed for the reouest. If secure content is desired- 
PDA portal 1101 returns to PDA 1107 for the ses sion cookie for each secure 
channel. If a session cookie does not exist, pr ocessing continues for 
establishing a session in accordance with FI G. 10 for example. 
1001411 . - The existing session cookie on PDA 1107 is returne d to PDA portal 

1101 in its encrypted form. The session cookie along with the PDA portal 
user account is forwarded to an HEP 1105. HEP 1105 does not need to be 
encr ypted as there is no secure c ontent present. HEP 1105 decrypts the 
session cookie using ECC and the pass-phrase for th e user account. The 



l rooi4Qi 



SHAHPAS\PHX\1 229471.1 



53 



EXPRESS MAIL NO. EL609007152US | 

user account is stored on PDA 1107 in accordance with FIG.s 8 and 10. The 
kev information used to access the desired channel content is combined with 
the session cookie into a request. HEP 1105 encrypts the request using SSL 
3.0 following a kev exchange with a channel web server 1111 of a channel 
1113. For example. HEP 1105 mav communicate with ch annel web server 
1111 via the Internet. The encrypted session request is directed to channel 
web server 1111. and channel web server 1111 decr ypts the encrypted 
request and verifies the session ID contained within the cookie. Channel 
content 111 5 communicates with c hannel web server 1111 to serve the 
requested content and return it to channel web server 1111. 
r001421 If the session ID is curren t and valid, channel web server 1111 passes 

the kev information to the applicable channel content for fulfillment. If the 
session ID is invalid or expired, an error is returned to PDA portal 1101 and 
the user can re-establish their session cookie in accordance with FIG. 10 for 
example. Once the content has been collected, it is returned to channel web 
server 1111. Channel web server 1111 encrypts the response (referred to as 
the oavload) using SSL 3.0 using the negotiated kevs. Channel web server 
1111 returns the encrypted response to HE P 1105 at PDA portal 1101. 

HEP 1105 de crypts the res ponse and interrogates th e content, 
identif ying any links that are present. The remaining content is then 
encrypted with ECC using the pass-phrase that has been established for this 
user account as the kev. The credentials are hashed w ith a random number 
and salted. 

The encrypted content passes to PPA portal web server 1109. For 
anv links present in the response, for example. PPA portal web server 1109 
submits ad ditional reouests to the channel until all content is collected as 
described above. Once all content (either secure or unsecured! is collected. 
it is returned to PPA 1107 and stored. To view the contents on PPA 1107. the 
user authenticates themselves. Authentication is completed bv entering the 
user's pass-phrase, which is used t o decrypt the content and make it 
available for viewing. 
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[00145] Once the content is decrypted and viewed, the conte nt is purged 

from PDA's 1107 memory after a defined period of time. After entering the 
pass-phrase, the pass-phrase is purged from PDA's 1107 memory after a 
defined period of time. The purging and defined period of time are 
configurable depending on the needs of the system. If the user removes the 
channel with secu re conte nt or logs out for example, the secure contenland 
associate d session cookie are deleted from PDA's 1107 storage. Thus. FIG, 
11 illustra tes chan nel updates in acco rdance with an exemplar y embodiment 
of the present invention. 
[00146] In the foregoing specification, the invention has been described with 

reference to specific embodiments. However, it will be appreciated that various 
modifications and changes can be made without departing from the scope of Re- 
present invention as set forth in the claims below. The specification and figures are 
to be regarded in an illustrative manner, rather than a restrictive one, and all such 
modifications are intended to be included within the scope of present invention. 
Accordingly, the scope of the invention should be determined by the appended 
claims and their legal equivalents, rather than by the examples given above. For 
example, the steps recited in any of the method or process claims may be 
executed in any order and are not limited to the order presented in the claims. 
f001471 Benefits, other advantages, and solutions to problems have been 

described above with regard to specific embodiments. However, the benefits, 
advantages, solutions to problems, and any element(s) that may cause any benefit, 
advantage, or solution to occur or become more pronounced are not to be 
construed as critical, required, or essential features or elements of any or all the 
claims. As used herein, the terms "comprises", "comprising", or any other variation 
thereof, are intended to cover a non-exclusive inclusion, such that a process, 
... method, article, or apparatus that comprises a list of elements does not include, 
only those elements but may include other elements not expressly listed or 
inherent to such process, method, article, or apparatus. Further, no element 
described herein is required for the practice of the invention unless expressly 
described as "essential" or " critical". 
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SYSTEM AND METHOD FOR SECURING DATA THROUGH A PDA PORTAL 

ABSTRACT OF THE DISCLOSURE 

Abstract 

f001481 Consumers may utilize computing devices to assist in the purchase and/or 

loyalty process, and in particular, the consumer may utilize a PDA to facilitate the 
purchase and/or loyalty process. During the purchase and/or loyalty process, the 
consumer may need to insure that any content downloaded or used in association 
with the PDA is secure in how it is collected, assembledj and delivered to the PDA 
device. This system and method secures the data from its source to when it is 
actually viewed/_or_used by the authorized user. The PDA may have direct access 
A to an Internet web site portal that offers secure personal content from a content 

provider, such as, for example, an on-line banking or financial institution. Using the 
% web site portal, the content provider may offer personal or confidential data, such 

as financial information, to PDA users in a secure (e.g., encrypted) environment. 
The exemplary system and method may establish a PDA portal link to the web site 
for collecting specified information for a user and transmitting the information to the 
remote device. To receive the information, the PDA contacts the portal and 

I establishes a connection, authenticates itself to the network 4 and allows the user to 
complete secured transactions or transmissions over the network. 
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